django-s3-upload
Compatibility
This library now supports Python3 and Django v1.11 and above only.
Allows direct uploading of a file from the browser to AWS S3 via a file input field rendered by Django.
The uploaded file's URL is then saveable as the value of that field in the database.
This avoids the problem of uploads timing out when they go via a web server before being handed off to S3.
Features include:
- displaying a progress bar
- support for ACLs (eg, private uploads)
- support for encrypted-at-rest S3 buckets
- mimetype and file extension whitelisting
- specifying different bucket destinations on a per-field basis
Installation
Install with Pip:
pip install django-s3-upload
AWS Setup
Access Credentials
You have two options of providing access to AWS resources:
- Add credentials of an IAM user to your Django settings (see below)
- Use the EC2 instance profile and its attached IAM role
Whether you are using an IAM user or a role, there needs to be an IAM policy
in effect that grants permission to upload to S3:
"Statement": [
{
"Effect": "Allow",
"Action": ["s3:PutObject", "s3:PutObjectAcl"],
"Resource": "arn:aws:s3:::your-bucket-name/*"
}
]
If the instance profile is to be used, the IAM role needs to have a
Trust Relationship configuration applied:
"Statement": [
{
"Effect": "Allow",
"Principal": {
"Service": "ec2.amazonaws.com"
},
"Action": "sts:AssumeRole"
}
]
Note that in order to use the EC2 instance profile, django-s3-upload needs
to query the EC2 instance metadata using utility functions from the
botocore [] package. You already have botocore
installed if boto3
is a dependency of your project.
S3 CORS
Setup a CORS policy on your S3 bucket.
<CORSConfiguration>
<CORSRule>
<AllowedOrigin>http://yourdomain.com:8080</AllowedOrigin>
<AllowedMethod>POST</AllowedMethod>
<AllowedMethod>PUT</AllowedMethod>
<MaxAgeSeconds>3000</MaxAgeSeconds>
<AllowedHeader>*</AllowedHeader>
</CORSRule>
</CORSConfiguration>
Django Setup
settings.py
INSTALLED_APPS = [
...
's3upload',
...
]
TEMPLATES = [{
...
'APP_DIRS': True,
...
}]
AWS_ACCESS_KEY_ID = ''
AWS_SECRET_ACCESS_KEY = ''
AWS_STORAGE_BUCKET_NAME = ''
S3UPLOAD_REGION = 'us-east-1'
S3UPLOAD_DESTINATIONS = {
'example_destination': {
'key': 'uploads/images',
'auth': lambda u: u.is_staff,
'allowed_types': ['image/jpeg', 'image/png', 'video/mp4'],
'allowed_extensions': ('.jpg', '.jpeg', '.png'),
'bucket': 'pdf-bucket',
'acl': 'private',
'cache_control': 'max-age=2592000',
'content_disposition': 'attachment',
'content_length_range': (5000, 20000000),
'server_side_encryption': 'AES256',
}
}
urls.py
urlpatterns = [
path(r'^s3upload/', include('s3upload.urls')),
]
Run python manage.py collectstatic
if required.
Use in Django admin
models.py
from django.db import models
from s3upload.fields import S3UploadField
class Example(models.Model):
video = S3UploadField(dest='example_destination')
Use the widget in a custom form
forms.py
from django import forms
from s3upload.widgets import S3UploadWidget
class S3UploadForm(forms.Form):
images = forms.URLField(widget=S3UploadWidget(dest='example_destination'))
*Optional. You can modify the HTML of the widget by overiding template s3upload/templates/s3upload-widget.tpl
views.py
from django.views.generic import FormView
from .forms import S3UploadForm
class MyView(FormView):
template_name = 'form.html'
form_class = S3UploadForm
templates/form.html
<html>
<head>
<meta charset="utf-8">
<title>s3upload</title>
{{ form.media }}
</head>
<body>
<form action="" method="post">{% csrf_token %}
{{ form.as_p }}
</form>
</body>
</html>
Examples
Examples of both approaches can be found in the examples folder. To run them:
$ git clone git@github.com:yunojuno/django-s3-upload.git
$ cd django-s3-upload
# Add your AWS keys to your environment
export AWS_ACCESS_KEY_ID='...'
export AWS_SECRET_ACCESS_KEY='...'
export AWS_STORAGE_BUCKET_NAME='...'
export S3UPLOAD_REGION='...' # e.g. 'eu-west-1'
$ docker-compose up
Visit http://localhost:8000/admin
to view the admin widget and http://localhost:8000/form
to view the custom form widget.