Home Verkennen Help
Inloggen
biheng
/
dify
1
0
Vork 0
Bestanden Issues 0 Pull-aanvragen 0 Wiki
Bladeren bron

add aws s3 iam check (#5174)

Jyong 10 maanden geleden
bovenliggende
0633aae7dc
commit
d7fbae286a
4 gewijzigde bestanden met toevoegingen van 17 en 8 verwijderingen
Zij-aan-zij weergave Toon Diff Stats
  1. 1 0
      api/.env.example
  2. 2 0
      api/config.py
  3. 12 8
      api/extensions/storage/s3_storage.py
  4. 2 0
      docker/docker-compose.yaml

+ 1 - 0
api/.env.example
Bestand weergeven 

@@ -42,6 +42,7 @@ DB_DATABASE=dify
 
 # storage type: local, s3, azure-blob
 
 STORAGE_TYPE=local
 
 STORAGE_LOCAL_PATH=storage
 
+S3_USE_AWS_MANAGED_IAM=false
 
 S3_ENDPOINT=https://your-bucket-name.storage.s3.clooudflare.com
 
 S3_BUCKET_NAME=your-bucket-name
 
 S3_ACCESS_KEY=your-access-key

+ 2 - 0
api/config.py
Bestand weergeven 

@@ -24,6 +24,7 @@ DEFAULTS = {
 
     'APP_WEB_URL': 'https://udify.app',
 
     'FILES_URL': '',
 
     'FILES_ACCESS_TIMEOUT': 300,
 
+    'S3_USE_AWS_MANAGED_IAM': 'False',
 
     'S3_ADDRESS_STYLE': 'auto',
 
     'STORAGE_TYPE': 'local',
 
     'STORAGE_LOCAL_PATH': 'storage',
 
@@ -226,6 +227,7 @@ class Config:
 
         self.STORAGE_LOCAL_PATH = get_env('STORAGE_LOCAL_PATH')
 
 
         # S3 Storage settings
 
+        self.S3_USE_AWS_MANAGED_IAM = get_bool_env('S3_USE_AWS_MANAGED_IAM')
 
         self.S3_ENDPOINT = get_env('S3_ENDPOINT')
 
         self.S3_BUCKET_NAME = get_env('S3_BUCKET_NAME')
 
         self.S3_ACCESS_KEY = get_env('S3_ACCESS_KEY')

+ 12 - 8
api/extensions/storage/s3_storage.py
Bestand weergeven 

@@ -16,14 +16,18 @@ class S3Storage(BaseStorage):
 
         super().__init__(app)
 
         app_config = self.app.config
 
         self.bucket_name = app_config.get('S3_BUCKET_NAME')
 
-        self.client = boto3.client(
 
-                    's3',
 
-                    aws_secret_access_key=app_config.get('S3_SECRET_KEY'),
 
-                    aws_access_key_id=app_config.get('S3_ACCESS_KEY'),
 
-                    endpoint_url=app_config.get('S3_ENDPOINT'),
 
-                    region_name=app_config.get('S3_REGION'),
 
-                    config=Config(s3={'addressing_style': app_config.get('S3_ADDRESS_STYLE')})
 
-                )
 
+        if app_config.get('S3_USE_AWS_MANAGED_IAM'):
 
+            session = boto3.Session()
 
+            self.client = session.client('s3')
 
+        else:
 
+            self.client = boto3.client(
 
+                        's3',
 
+                        aws_secret_access_key=app_config.get('S3_SECRET_KEY'),
 
+                        aws_access_key_id=app_config.get('S3_ACCESS_KEY'),
 
+                        endpoint_url=app_config.get('S3_ENDPOINT'),
 
+                        region_name=app_config.get('S3_REGION'),
 
+                        config=Config(s3={'addressing_style': app_config.get('S3_ADDRESS_STYLE')})
 
+                    )
 
 
     def save(self, filename, data):
 
         self.client.put_object(Bucket=self.bucket_name, Key=filename, Body=data)

+ 2 - 0
docker/docker-compose.yaml
Bestand weergeven 

@@ -81,6 +81,7 @@ services:
 
       # only available when STORAGE_TYPE is `local`.
 
       STORAGE_LOCAL_PATH: storage
 
       # The S3 storage configurations, only available when STORAGE_TYPE is `s3`.
 
+      S3_USE_AWS_MANAGED_IAM: 'false'
 
       S3_ENDPOINT: 'https://xxx.r2.cloudflarestorage.com'
 
       S3_BUCKET_NAME: 'difyai'
 
       S3_ACCESS_KEY: 'ak-difyai'
 
@@ -236,6 +237,7 @@ services:
 
       STORAGE_TYPE: local
 
       STORAGE_LOCAL_PATH: storage
 
       # The S3 storage configurations, only available when STORAGE_TYPE is `s3`.
 
+      S3_USE_AWS_MANAGED_IAM: 'false'
 
       S3_ENDPOINT: 'https://xxx.r2.cloudflarestorage.com'
 
       S3_BUCKET_NAME: 'difyai'
 
       S3_ACCESS_KEY: 'ak-difyai'