CORS 配置

  • 创建 CORS 配置并对存储桶设置该配置
  • 通过添加规则来检索并修改配置
  • 向存储桶添加修改过的配置
  • 删除配置
import com.amazonaws.AmazonServiceException;

import com.amazonaws.SdkClientException;

import com.amazonaws.auth.profile.ProfileCredentialsProvider;

import com.amazonaws.regions.Regions;

import com.amazonaws.services.s3.AmazonS3;

import com.amazonaws.services.s3.AmazonS3ClientBuilder;

import com.amazonaws.services.s3.model.BucketCrossOriginConfiguration;

import com.amazonaws.services.s3.model.CORSRule;

import java.io.IOException;

import java.util.ArrayList;

import java.util.Arrays;

import java.util.List;

public class CORS {

    public static void main(String[] args) throws IOException {

        Regions clientRegion = Regions.DEFAULT_REGION;

        String bucketName = "*** Bucket name ***";

        // Create two CORS rules.

        List<CORSRule.AllowedMethods> rule1AM = new ArrayList<CORSRule.AllowedMethods>();

        rule1AM.add(CORSRule.AllowedMethods.PUT);

        rule1AM.add(CORSRule.AllowedMethods.POST);

        rule1AM.add(CORSRule.AllowedMethods.DELETE);

        CORSRule rule1 = new CORSRule().withId("CORSRule1").withAllowedMethods(rule1AM)

                .withAllowedOrigins(Arrays.asList("http://*.example.com"));

        List<CORSRule.AllowedMethods> rule2AM = new ArrayList<CORSRule.AllowedMethods>();

        rule2AM.add(CORSRule.AllowedMethods.GET);

        CORSRule rule2 = new CORSRule().withId("CORSRule2").withAllowedMethods(rule2AM)

                .withAllowedOrigins(Arrays.asList("*")).withMaxAgeSeconds(3000)

                .withExposedHeaders(Arrays.asList("x-amz-server-side-encryption"));

        List<CORSRule> rules = new ArrayList<CORSRule>();

        rules.add(rule1);

        rules.add(rule2);

        // Add the rules to a new CORS configuration.

        BucketCrossOriginConfiguration configuration = new BucketCrossOriginConfiguration();

        configuration.setRules(rules);

        try {

            AmazonS3 s3Client = AmazonS3ClientBuilder.standard()

                    .withCredentials(new ProfileCredentialsProvider())

                    .withRegion(clientRegion)

                    .build();

            // Add the configuration to the bucket.

            s3Client.setBucketCrossOriginConfiguration(bucketName, configuration);

            // Retrieve and display the configuration.

            configuration = s3Client.getBucketCrossOriginConfiguration(bucketName);

            printCORSConfiguration(configuration);

            // Add another new rule.

            List<CORSRule.AllowedMethods> rule3AM = new ArrayList<CORSRule.AllowedMethods>();

            rule3AM.add(CORSRule.AllowedMethods.HEAD);

            CORSRule rule3 = new CORSRule().withId("CORSRule3").withAllowedMethods(rule3AM)

                    .withAllowedOrigins(Arrays.asList("http://www.example.com"));

            rules = configuration.getRules();

            rules.add(rule3);

            configuration.setRules(rules);

            s3Client.setBucketCrossOriginConfiguration(bucketName, configuration);

            // Verify that the new rule was added by checking the number of rules in the configuration.

            configuration = s3Client.getBucketCrossOriginConfiguration(bucketName);

            System.out.println("Expected # of rules = 3, found " + configuration.getRules().size());

            // Delete the configuration.

            s3Client.deleteBucketCrossOriginConfiguration(bucketName);

            System.out.println("Removed CORS configuration.");

            // Retrieve and display the configuration to verify that it was

            // successfully deleted.

            configuration = s3Client.getBucketCrossOriginConfiguration(bucketName);

            printCORSConfiguration(configuration);

        } catch (AmazonServiceException e) {

            // The call was transmitted successfully, but Amazon S3 couldn't process

            // it, so it returned an error response.

            e.printStackTrace();

        } catch (SdkClientException e) {

            // Amazon S3 couldn't be contacted for a response, or the client

            // couldn't parse the response from Amazon S3.

            e.printStackTrace();

        }

    }

    private static void printCORSConfiguration(BucketCrossOriginConfiguration configuration) {

        if (configuration == null) {

            System.out.println("Configuration is null.");

        } else {

            System.out.println("Configuration has " + configuration.getRules().size() + " rules\n");

            for (CORSRule rule : configuration.getRules()) {

                System.out.println("Rule ID: " + rule.getId());

                System.out.println("MaxAgeSeconds: " + rule.getMaxAgeSeconds());

                System.out.println("AllowedMethod: " + rule.getAllowedMethods());

                System.out.println("AllowedOrigins: " + rule.getAllowedOrigins());

                System.out.println("AllowedHeaders: " + rule.getAllowedHeaders());

                System.out.println("ExposeHeader: " + rule.getExposedHeaders());

                System.out.println();

            }

        }

    }

}

AmazonS3 使用AWS SDK for Java实现跨源资源共享 (CORS)的更多相关文章

  1. 跨源资源共享(CORS)概念、实现(用Spring)、起源介绍

    本文内容引用自: https://howtodoinjava.com/spring5/webmvc/spring-mvc-cors-configuration/ https://developer.m ...

  2. CORS跨源资源共享概念及配置(Kubernetes Ingress和Spring Cloud Gateway)

    我最新最全的文章都在南瓜慢说 www.pkslow.com,欢迎大家来喝茶! 1 跨源资源共享CORS 跨源资源共享 (CORS) (或通俗地译为跨域资源共享)是一种基于HTTP 头的机制,该机制通过 ...

  3. JS高程3:Ajax与Comet-进度事件、跨源资源共享

    有以下 6 个进度事件  loadstart:在接收到响应数据的第一个字节时触发.  progress:在接收响应期间持续不断地触发.  error:在请求发生错误时触发.  abort:在因 ...

  4. SpringBoot系列——CORS(跨源资源共享)

    前言 出于安全原因,浏览器禁止ajax调用当前源之外的资源(同源策略),我们之前也有写个几种跨域的简单实现(还在问跨域?本文记录js跨域的多种实现实例),本文主要详细介绍CORS,跨源资源共享,以及如 ...

  5. 彻底掌握CORS跨源资源共享

    本文来自于公众号链接: 彻底掌握CORS跨源资源共享 ) 本文接上篇公众号文章:彻底理解浏览器同源策略SOP 一.概述 在云时代,各种SAAS应用层出不穷,各种互联网API接口越来越丰富,H5技术在微 ...

  6. 跨域资源共享(CORS)问题解决方案

    CORS:Cross-Origin Resource Sharing(跨域资源共享) CORS被浏览器支持的版本情况如下:Chrome 3+.IE 8+.Firefox 3.5+.Opera 12+. ...

  7. 跨域资源共享CORS与JSONP

    同源策略限制: 同源策略(Same origin policy)是一种约定,它是浏览器最核心也最基本的安全功能,如果没有同源策略,攻击者可以通过JavaScript获取你的邮件以及其他敏感信息,比如说 ...

  8. JavaScript跨源资源共享

    CORS(跨 源资源共享)基本思想,就是使用自定义的HTTP头部让浏览器与服务器进行沟通,从而决定请求或响应式应该成功还是失败 IE对CORS的实现 IE8引入了XDR类型,与XHR类似,但可以实现安 ...

  9. 跨域解决方案 - 跨域资源共享cors

    目录 1. cors 介绍 2. 原理 3. cors 解决跨域 4. 自定义HTTP 头部字段解决跨域 5. 代码演示 5. 参考链接 1. cors 介绍 cors 说的是一个机制,其实相当于一个 ...

随机推荐

  1. kubernetes进阶(一) kubectl工具使用详解

    管理k8s核心资源的三种基本方法: 一.陈述式-主要依赖命令行工具  --可以满足90%以上的使用场景,但是缺点也很明显: 命令冗长,复杂,难以记忆 特定场景下,无法实现管理需求 对资源的增.删.查操 ...

  2. 一个操作系统的实现sudo mount -o loop pm.img /mnt/floppy mount point /mnt/floppy does not exist losetup device is busy

    部分参考:https://blog.csdn.net/u012323667/article/details/79266623 一. sudo mount -o loop pm.img /mnt/flo ...

  3. Graphviz - Graph Visualization Software 开源可视化绘图工具(visio 类)

    http://www.graphviz.org/Download_windows.php Welcome to Graphviz Available translations:  Romanian,  ...

  4. XSS (跨站脚本攻击) 的原理分析,测试 && 应对措施

    1 1 1 XSS (跨站脚本攻击) 的原理分析,测试 1 demo: <!DOCTYPE html> <html lang="en"> <head& ...

  5. css text-align-last & text-align

    css text-align-last & text-align css https://caniuse.com/mdn-css_properties_text-align-last http ...

  6. GraphQL API In Action

    GraphQL API In Action GraphQL API express $ yarn add express express-graphql graphql # OR $ npm i -S ...

  7. Kotlin & Android & Swift & Flutter & React Native

    Kotlin & Android https://www.runoob.com/kotlin/kotlin-tutorial.html Swift 5 & iOS 12 https:/ ...

  8. Raspberry Pi & Raspberry Pi 4

    Raspberry Pi & Raspberry Pi 4 pdf https://www.raspberrypi.org/magpi/issues/beginners-guide-2nd-e ...

  9. Flutter 在mixin中使用setState

    相关问题 创建mixin import 'package:flutter/material.dart'; mixin JobsMixin<T extends StatefulWidget> ...

  10. NGK数字增益平台的算力是什么?

    今年的币价回暖带来了新一轮的"信仰充值",部分投资者对比特币的兴趣从购买向更源头的算力转移.随着比特币开采数量逐渐减少,全网算力一直在增加,算力难度也是越来越高.同时在算力行业中竞 ...