![[Webinar] AI Is Already Inside Your SaaS Stack — Learn How to Prevent the Next Silent Breach](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiOWn65wd33dg2uO99NrtKbpYLfcepwOLidQDMls0HXKlA91k6HURluRA4WXgJRAZldEe1VReMQZyyYt1PgnoAn5JPpILsWlXIzmrBSs_TBoyPwO7hZrWouBg2-O3mdeoeSGY-l9_bsZB7vbpKjTSvG93zNytjxgTaMPqo9iq9Z5pGa05CJOs9uXpwHFT4/s1600/ai-cyber.jpg?#)
![[The AI Show Episode 144]: ChatGPT’s New Memory, Shopify CEO’s Leaked “AI First” Memo, Google Cloud Next Releases, o3 and o4-mini Coming Soon & Llama 4’s Rocky Launch](https://www.marketingaiinstitute.com/hubfs/ep%20144%20cover.png)
![[FREE EBOOKS] Machine Learning Hero, AI-Assisted Programming for Web and Machine Learning & Four More Best Selling Titles](https://www.javacodegeeks.com/wp-content/uploads/2012/12/jcg-logo.jpg){kind=logo}
![Rogue Company Elite tier list of best characters [April 2025]](https://media.pocketgamer.com/artwork/na-33136-1657102075/rogue-company-ios-android-tier-cover.jpg?#)
_Andreas_Prott_Alamy.jpg?width=1280&auto=webp&quality=80&disable=upscale#)
![What’s new in Android’s April 2025 Google System Updates [U: 4/18]](https://i0.wp.com/9to5google.com/wp-content/uploads/sites/4/2025/01/google-play-services-3.jpg?resize=1200%2C628&quality=82&strip=all&ssl=1)
![Apple Watch Series 10 Back On Sale for $299! [Lowest Price Ever]](https://www.iclarified.com/images/news/96657/96657/96657-640.jpg)
![EU Postpones Apple App Store Fines Amid Tariff Negotiations [Report]](https://www.iclarified.com/images/news/97068/97068/97068-640.jpg)
![Apple Slips to Fifth in China's Smartphone Market with 9% Decline [Report]](https://www.iclarified.com/images/news/97065/97065/97065-640.jpg)
Uploading Files Securely to AWS S3 Using Presigned URLs
Uploading Files Securely to AWS S3 Using Presigned URLs Subtitle: A practical guide to keeping your uploads safe by generating and using AWS presigned URLs in your web applications. Uploading files directly to AWS S3 from a frontend app can be risky if not handled securely. Exposing your S3 credentials or allowing open write access is a big no-no. The best practice? Use presigned URLs — short-lived links that grant temporary access to upload a specific file. In this tutorial, you'll learn how to securely generate and use presigned URLs for file uploads using Node.js and AWS SDK v3. Step 1: Set Up Your AWS S3 Bucket In the AWS Console: Create an S3 bucket (or use an existing one). Ensure it has private access by default. Enable CORS (Cross-Origin Resource Sharing) to allow browser-based uploads. Example configuration: { "CORSRules": [ { "AllowedHeaders": ["*"], "AllowedMethods": ["PUT"], "AllowedOrigins": ["*"], "ExposeHeaders": [] } ] } Step 2: Install the AWS SDK npm install @aws-sdk/client-s3 @aws-sdk/s3-request-presigner Step 3: Generate the Presigned URL in Your Backend Create an endpoint that your frontend can call to get a temporary upload URL. // server.js (Node.js/Express) import express from 'express'; import { S3Client, PutObjectCommand } from '@aws-sdk/client-s3'; import { getSignedUrl } from '@aws-sdk/s3-request-presigner'; const app = express(); const s3 = new S3Client({ region: 'your-region' }); app.get('/generate-presigned-url', async (req, res) => { const { fileName, fileType } = req.query; const command = new PutObjectCommand({ Bucket: 'your-bucket-name', Key: fileName, ContentType: fileType }); const url = await getSignedUrl(s3, command, { expiresIn: 60 }); // 1 minute res.json({ url }); }); app.listen(3000, () => console.log('Server running on port 3000')); Step 4: Upload the File in Your Frontend // JavaScript (frontend) async function uploadFile(file) { const res = await fetch(`/generate-presigned-url?fileName=${file.name}&fileType=${file.type}`); const { url } = await res.json(); await fetch(url, { method: 'PUT', headers: { 'Content-Type': file.type }, body: file }); alert('Upload complete!'); } Conclusion Presigned URLs are a secure and scalable solution for file uploads in modern web apps. By delegating the responsibility to AWS, you minimize backend load and eliminate security risks associated with direct uploads. Make sure to apply appropriate file type and size validations before generating URLs!
Uploading Files Securely to AWS S3 Using Presigned URLs
Subtitle: A practical guide to keeping your uploads safe by generating and using AWS presigned URLs in your web applications.
Uploading files directly to AWS S3 from a frontend app can be risky if not handled securely. Exposing your S3 credentials or allowing open write access is a big no-no. The best practice? Use presigned URLs — short-lived links that grant temporary access to upload a specific file.
In this tutorial, you'll learn how to securely generate and use presigned URLs for file uploads using Node.js and AWS SDK v3.
Step 1: Set Up Your AWS S3 Bucket
In the AWS Console:
- Create an S3 bucket (or use an existing one).
- Ensure it has private access by default.
- Enable CORS (Cross-Origin Resource Sharing) to allow browser-based uploads. Example configuration:
{
"CORSRules": [
{
"AllowedHeaders": ["*"],
"AllowedMethods": ["PUT"],
"AllowedOrigins": ["*"],
"ExposeHeaders": []
}
]
}
Step 2: Install the AWS SDK
npm install @aws-sdk/client-s3 @aws-sdk/s3-request-presignerStep 3: Generate the Presigned URL in Your Backend
Create an endpoint that your frontend can call to get a temporary upload URL.
// server.js (Node.js/Express)
import express from 'express';
import { S3Client, PutObjectCommand } from '@aws-sdk/client-s3';
import { getSignedUrl } from '@aws-sdk/s3-request-presigner';
const app = express();
const s3 = new S3Client({ region: 'your-region' });
app.get('/generate-presigned-url', async (req, res) => {
const { fileName, fileType } = req.query;
const command = new PutObjectCommand({
Bucket: 'your-bucket-name',
Key: fileName,
ContentType: fileType
});
const url = await getSignedUrl(s3, command, { expiresIn: 60 }); // 1 minute
res.json({ url });
});
app.listen(3000, () => console.log('Server running on port 3000'));
Step 4: Upload the File in Your Frontend
// JavaScript (frontend)
async function uploadFile(file) {
const res = await fetch(`/generate-presigned-url?fileName=${file.name}&fileType=${file.type}`);
const { url } = await res.json();
await fetch(url, {
method: 'PUT',
headers: {
'Content-Type': file.type
},
body: file
});
alert('Upload complete!');
}
Conclusion
Presigned URLs are a secure and scalable solution for file uploads in modern web apps. By delegating the responsibility to AWS, you minimize backend load and eliminate security risks associated with direct uploads. Make sure to apply appropriate file type and size validations before generating URLs!
