CD
Cloudflare Developers2y ago
Maxou44

I get a 200 but I always have CORS

I get a 200 but I always have CORS errors on object PUT request
25 Replies
Unknown User
Unknown User2y ago
Message Not Public
Sign In & Join Server To View
kian
kian2y ago
How are you generating the URLs? A plain PutObject URL will work fine - if you're signing additional headers like Content-Type or Content-Length then that won't currently work 
console.log(
    await getSignedUrl(S3, new PutObjectCommand({Bucket: 'sdk-example', Key: 'dog.png'}), { expiresIn: 3600 })
)
console.log(
    await getSignedUrl(S3, new PutObjectCommand({Bucket: 'sdk-example', Key: 'dog.png'}), { expiresIn: 3600 })
)
Unknown User
Unknown User2y ago
Message Not Public
Sign In & Join Server To View
Maxou44
Maxou442y ago
import { S3Client, PutObjectCommand } from "@aws-sdk/client-s3";
import { getSignedUrl } from "@aws-sdk/s3-request-presigner";
import config from "../config";

const S3 = new S3Client({
    region: "auto",
    endpoint: `https://${config.cloudflareR2.accountId}.r2.cloudflarestorage.com`,
    credentials: {
        accessKeyId: config.cloudflareR2.accessKeyId,
        secretAccessKey: config.cloudflareR2.secretAccessKey
    },
});

export const getUploadUrl = async (filePath) => {
    return getSignedUrl(S3, new PutObjectCommand({ Bucket: config.cloudflareR2.bucketName, Key: filePath }), { expiresIn: 8 * 3600 })
}
import { S3Client, PutObjectCommand } from "@aws-sdk/client-s3";
import { getSignedUrl } from "@aws-sdk/s3-request-presigner";
import config from "../config";

const S3 = new S3Client({
    region: "auto",
    endpoint: `https://${config.cloudflareR2.accountId}.r2.cloudflarestorage.com`,
    credentials: {
        accessKeyId: config.cloudflareR2.accessKeyId,
        secretAccessKey: config.cloudflareR2.secretAccessKey
    },
});

export const getUploadUrl = async (filePath) => {
    return getSignedUrl(S3, new PutObjectCommand({ Bucket: config.cloudflareR2.bucketName, Key: filePath }), { expiresIn: 8 * 3600 })
}
Output url looks like : https://uploads.59d6cfa33763104c3a525a417344de88.r2.cloudflarestorage.com/files/1/79ef536f-video-1.mp4?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Content-Sha256=UNSIGNED-PAYLOAD&X-Amz-Credential=fa7a99413a33df15cc3944cfe19d9816%2F20221002%2Fauto%2Fs3%2Faws4_request&X-Amz-Date=20221002T192357Z&X-Amz-Expires=28800&X-Amz-Signature=db3a591a4cf15278ca1ef0da950f1fb6114fa93b8e327da6bdcbb9315fb0f423&X-Amz-SignedHeaders=host&x-id=PutObject The OPTION request on this url in browser returns a 403
Maxou44
Maxou442y ago
No description
Maxou44
Maxou442y ago
I tried to simplify the file path to "cat.jpg", but I have the same problem, the CORS are blocked. The bucket is public and connected to a domain name. I tried on other browser with the same issue, it's not a browser-cache issue 🧐 If you have an idea @kian I'm interested 😅
kian
kian2y ago
What’s the CORS configuration on the bucket?
Maxou44
Maxou442y ago
I made your HTTP call on Postman to set CORS, how can I check it ? If I make a GET on the same endpoint I get 
<?xml version="1.0" encoding="UTF-8"?><CORSConfiguration xmlns="http://s3.amazonaws.com/doc/2006-03-01/"><CORSRule><AllowedMethod>PUT</AllowedMethod><AllowedOrigin>*</AllowedOrigin></CORSRule></CORSConfiguration>
<?xml version="1.0" encoding="UTF-8"?><CORSConfiguration xmlns="http://s3.amazonaws.com/doc/2006-03-01/"><CORSRule><AllowedMethod>PUT</AllowedMethod><AllowedOrigin>*</AllowedOrigin></CORSRule></CORSConfiguration>
The presigned url works on Postman, so it's only a CORS issue 🧐 I'm not sure about it, but I think the OPTIONS request got this error : 
<?xml version="1.0" encoding="UTF-8"?>
<Error>
    <Code>SignatureDoesNotMatch</Code>
    <Message>The request signature we calculated does not match the signature you provided. Check your secret access key and signing method. </Message>
</Error>
<?xml version="1.0" encoding="UTF-8"?>
<Error>
    <Code>SignatureDoesNotMatch</Code>
    <Message>The request signature we calculated does not match the signature you provided. Check your secret access key and signing method. </Message>
</Error>
Unknown User
Unknown User2y ago
Message Not Public
Sign In & Join Server To View
Maxou44
Maxou442y ago
I switched to multipart upload
Unknown User
Unknown User2y ago
Message Not Public
Sign In & Join Server To View
Maxou44
Maxou442y ago
There is something with the Content-Type header
Unknown User
Unknown User2y ago
Message Not Public
Sign In & Join Server To View
Maxou44
Maxou442y ago
For multi part I sent this request to set CORS : 
<?xml version="1.0" encoding="UTF-8"?>
<CORSConfiguration xmlns="http://s3.amazonaws.com/doc/2006-03-01/">
    <CORSRule>
        <AllowedMethod>PUT</AllowedMethod>
        <AllowedOrigin>*</AllowedOrigin>
        <ExposeHeader>ETag</ExposeHeader>
    </CORSRule>
</CORSConfiguration>
<?xml version="1.0" encoding="UTF-8"?>
<CORSConfiguration xmlns="http://s3.amazonaws.com/doc/2006-03-01/">
    <CORSRule>
        <AllowedMethod>PUT</AllowedMethod>
        <AllowedOrigin>*</AllowedOrigin>
        <ExposeHeader>ETag</ExposeHeader>
    </CORSRule>
</CORSConfiguration>
Unknown User
Unknown User2y ago
Message Not Public
Sign In & Join Server To View
Maxou44
Maxou442y ago
yep On ?cors endpoint
Unknown User
Unknown User2y ago
Message Not Public
Sign In & Join Server To View
Maxou44
Maxou442y ago
The server-side code I use to generate/finish multipart. Based on this article for the logic : https://blog.logrocket.com/multipart-uploads-s3-node-js-react/
Antonello Zanini
LogRocket Blog
Multipart uploads with S3 in Node.js and React - LogRocket Blog
Explore S3 multipart upload in Node.js and React to enable faster and more flexible uploads into any Amazon S3-like cloud storage.

message.txt

Unknown User
Unknown User2y ago
Message Not Public
Sign In & Join Server To View
Maxou44
Maxou442y ago
multi part is more complex to handle
Unknown User
Unknown User2y ago
Message Not Public
Sign In & Join Server To View
Maxou44
Maxou442y ago
The 2-3 points to keep in mind : - ETag should be enabled using the ?cors enpoint - SigV2 (used by default) are not supported, you should use sigv4 like the code - Chunk size should be at least 5MB (except the last one)
Unknown User
Unknown User2y ago
Message Not Public
Sign In & Join Server To View
girth_brooks
girth_brooks10mo ago
Did you ever find a solution? I'm getting the same error when trying to upload from browser with signed URL. Here is my CORS configuration for my bucket: [ { "AllowedOrigins": [ "*" ], "AllowedMethods": [ "PUT" ], "AllowedHeaders": [ "content-type" ] } ] A lot of people say changing the Allowed-Headers to content-type fixes everything but no luck for me. Any help is appreciated
stillmotion
stillmotion8mo ago
Had this issue. It could be a few things: - Your access token to R2 could be expired - The CORS settings on the bucket's configuration page are incorrect (the CORS params passed to the presigned url request do nothing). Here's mine: 
[
  {
    "AllowedOrigins": [
      "*"
    ],
    "AllowedMethods": [
      "GET",
      "HEAD",
      "PUT",
      "DELETE"
    ],
    "AllowedHeaders": [
      "Content-Type",
      "range",
      "Vary"
    ],
    "ExposeHeaders": [
      "Content-Type",
      "Access-Control-Allow-Origin",
      "ETag",
      "Vary"
    ],
    "MaxAgeSeconds": 3600
  }
]
[
  {
    "AllowedOrigins": [
      "*"
    ],
    "AllowedMethods": [
      "GET",
      "HEAD",
      "PUT",
      "DELETE"
    ],
    "AllowedHeaders": [
      "Content-Type",
      "range",
      "Vary"
    ],
    "ExposeHeaders": [
      "Content-Type",
      "Access-Control-Allow-Origin",
      "ETag",
      "Vary"
    ],
    "MaxAgeSeconds": 3600
  }
]
Want results from more Discord servers?
Add your server
More Posts
Bad DNS cacheHow do I do that?https examplewould it be possible to get an example of an https server (ie, with valid tlsOptions specified) in wtrying to Enable access policy for onetrying to Enable access policy for one of my pages sites > Access policy could not be created. EnablTerraform setupDoes someone here have an public repo with an example terraform -> cloudflare setup?Hello one my workers suddenly can t beHello, one my workers suddenly can't be published anymore, with a `workers.api.error.internal_serverhas anyone seen `r2 put ` just hang I mhas anyone seen `r2.put()` just hang? I'm getting no errors/success or response of any kind, the proGenerally speaking if you re looking atGenerally speaking if you're looking at firebase and all that I don't think it matters much if you jThe extension in your browser next toThe extension in your browser, next to the address bar:can you screenshot your cloudflarecan you screenshot your cloudflare dashboard nav showing d1 then I can add you to the channel 🙂In workers I can access D1 when I deployIn workers. I can access D1 when I deploy using a separate worker, but not in the Remix loader. Also