New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More
Socket
Sign inDemoInstall
Socket
Sign inDemoInstall

@things-factory/attachment-base

Package Overview
Dependencies
Maintainers
0
Versions
895
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@things-factory/attachment-base

Server-side module for handling upload attachment. S3 Bucket and local folder attachment.

  • 8.0.0-alpha.35
  • Source
  • npm
  • Socket score
Version published
Weekly downloads
2.4K
increased by2.56%
Maintainers
0
Weekly downloads
 
Created
Source

Creating S3 Bucket and Access Key Pair

In my opinion, it is better to have unique s3 bucket and aws permissions for each project. This document is for initial s3 configuration of the project you will be using.

1. Creating S3 Bucket

create-s3-bucket Go to AWS Console for S3 Service

create-s3-bucket Create a bucket for your project. Fill name, region and other are default configuration.

2. Add User

add-user Move to AWS Console for IAM and select 'Access Management - Users' And Click 'Add Users'

add-user Set User name and check for 'Access Key' as credential type.

Policy for accessing S3 bucket

create-policy We need to create a policy for accessing s3 bucket you've made before. Select 3rd one in 'Set permissions' section. And click 'Create Policy', It'll open new tab of your browser.

create-policy Click JSON tab and edit for yours.

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": "s3:*",
            "Resource": [
                "arn:aws:s3:::my-project-attachments",
                "arn:aws:s3:::my-project-attachments/*"
            ]
        }
    ]
}

create-policy Set Name for the last step and finish creating the policy.

Assign the policy to user

add-user Now you can find new policy with 'refresh icon' button. Check the new one and go next.

add-user Finally, you can get access key pair.

FAQs

Package last updated on 30 Dec 2024

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Node.js EOL Versions CVE Dubbed the "Worst CVE of the Year" by Security Experts

Security News

Node.js EOL Versions CVE Dubbed the "Worst CVE of the Year" by Security Experts

Critics call the Node.js EOL CVE a misuse of the system, sparking debate over CVE standards and the growing noise in vulnerability databases.

By Sarah Gooding  -  Jan 24, 2025
SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

About

Packages

npm

Go

Maven

PyPI

Rubygems

Stay in touch

Get open source security insights delivered straight into your inbox.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc