Amazon S3 Utilities

Overview

The Amazon S3 Utilities Plug-in leverages the Amazon AWS Java API to connect with Amazon S3 to store and retrieve files.

Key Features & Functionality

The following smart services are included:

Upload documents to AWS S3
Download documents from AWS S3
Create Folders in AWS S3
Delete documents from AWS S3

The plug-in also includes a function:

getPreSignedURLForS3 that generates a V4 pre signed url that expires after 5s. This allows for a short term access grant to a secured resource. It can be used in a WebAPI object to redirect a user from Appian to a resource on S3.

Amazon S3 Utilities supports the following Amazon S3 features:

Client side encryption with AWS KMS–Managed Customer Master Key (https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingClientSideEncryption.html)
Server side encryption with Amazon S3-Managed Keys (https://docs.aws.amazon.com/AmazonS3/latest/dev/serv-side-encryption.html)

Note: The plug-in requires Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy Files when using client side encryption.

(https://www.oracle.com/technetwork/java/javase/downloads/jce8-download-2133166.html)

The Appian Secure Credential Store is leveraged for the credentials to integrate with Amazon S3. Before executing the plug-in, create an new secure credential store with the following 3 attributes. These values are obtained from Amazon AWS IAM console.

accesskeyid: this is the access key id for connecting to AWS S3
accesskeysecret: this is the access key secret for connecting to AWS S3
kmscmkid: this attribute is only required if using AWS Client Side Encryption

Sylvain Furt 10 months ago in reply to roryd62

I was able to reproduce this issue and we will be working on addressing it shortly
- Cancel
- Up 0 Down
- Reply
- More
- Cancel
roryd62 10 months ago in reply to roryd62
- Cancel
- Up 0 Down
- Reply
- More
- Cancel
roryd62 10 months ago

Anyone else having this plugin break permanently on update?
- Cancel
- Up 0 Down
- Reply
- More
- Cancel
Appian AppMarket 11 months ago
v1.4.0 Release Notes
- Updated deprecated API and license file.
- Cancel
- Up 0 Down
- Reply
- More
- Cancel
kimiz over 1 year ago
Could this plugin use assumed role to upload S3 to a private VPC S3 bucket?
- PrivateLink setup done
- Assumed role created and ready to be shared with Appian to configure
- Cancel
- Up 0 Down
- Reply
- More
- Cancel
Mike Cichy over 1 year ago in reply to GautamShenoy

The plugin does not have this capability currently. I think it should be a separate call to get the file metadata.
- Cancel
- Up 0 Down
- Reply
- More
- Cancel
GautamShenoy over 1 year ago

Hi

I am using the download s3 pluggin in the process model to download the files from S3

There has been a requirement to fetch the timestamp of the file modified in s3

Is there a way we can fetch the timestamp while downloading the file ?
- Cancel
- Up 0 Down
- Reply
- More
- Cancel
susmethaasirir over 1 year ago in reply to baratc

@baratc can u add ur inputs on how have to implemented webapi
- Cancel
- Up 0 Down
- Reply
- More
- Cancel
Mike Cichy over 1 year ago in reply to Anuj Sheth

I don't think the expiration time has anything to do with the issue, the 5s is just an expiration for the user/system to initiate the request - once started, the download will continue until completion.

If we leave the expiration open then the generated link can be shared and document accessible to anyone.
- Cancel
- Up 0 Down
- Reply
- More
- Cancel
Anuj Sheth over 1 year ago

Can we have parameter to set expiration time, instead of just defaulting it to 5Secs can we set it from Appian function. Reason is we are pulling the preassigned link and passing it to PDFTron plugin to display on Appian interface and the link is giving 403 if the document size is in MBs (Larger files). So please open the parameter as S3 bucket allows end users to set it up based on their need.
- Cancel
- Up 0 Down
- Reply
- More
- Cancel