Can you limit the maximum file size that can be uploaded to the public S3 bucket?

Question

Can you limit the maximum file size that can be uploaded to the public S3 bucket?

I am creating a web application that can upload files directly to a public S3 bucket using AWS for the SDK browser.

I would like to limit the maximum file size that can be downloaded, and although I can do a client-side check for file size, a clean client solution is not very reliable, and I would like to add server-side verification. Is it possible to do this using IAM roles for the "S3: PutObject" action?

+5

amazon-s3 amazon-web-services amazon-iam

Colin dumitru Nov 25 '14 at 20:15

source share

2 answers

Sebastien stormacq · Answer 1 · 2014-11-25T20:28:26+0000

You can limit the size of the loaded object using the content-length-range attribute in your upload form.

Here is the relevant page of the document: http://doc.s3.amazonaws.com/proposals/post.html#Limiting_Uploaded_Content

Mick · Answer 2 · 2016-05-20T14:22:22+0000

You can set the minimum and maximum file size in s3Policy that you create by setting up a signed downloadable URK for the direct browser to load S3.

Here is an example (JavaScript from the node.js application) - see the “reach reach length” part below:

var s3Policy = { 'expiration': expiration, 'conditions': [{ 'bucket': aws.bucket }, ['starts-with', '$key', path], { 'acl': readType }, { 'success_action_status': '201' }, ['starts-with', '$Content-Type', request.type], ['content-length-range', 2048, 124857600], //min and max ] };

If a user uploads a file that exceeds S3, he returns 400 bad requests with the body, including a message about exceeding the maximum file size limit.

Can you limit the maximum file size that can be uploaded to the public S3 bucket?

More articles: