forked from github/plane
7b965179d8
* dev: update bucket script to make the bucket public * dev: remove auto bucket script from docker compose
84 lines
2.7 KiB
Python
84 lines
2.7 KiB
Python
import os, sys
|
|
import boto3
|
|
import json
|
|
from botocore.exceptions import ClientError
|
|
|
|
|
|
sys.path.append("/code")
|
|
|
|
os.environ.setdefault("DJANGO_SETTINGS_MODULE", "plane.settings.production")
|
|
import django
|
|
|
|
django.setup()
|
|
|
|
def set_bucket_public_policy(s3_client, bucket_name):
|
|
public_policy = {
|
|
"Version": "2012-10-17",
|
|
"Statement": [{
|
|
"Effect": "Allow",
|
|
"Principal": "*",
|
|
"Action": ["s3:GetObject"],
|
|
"Resource": [f"arn:aws:s3:::{bucket_name}/*"]
|
|
}]
|
|
}
|
|
|
|
try:
|
|
s3_client.put_bucket_policy(
|
|
Bucket=bucket_name,
|
|
Policy=json.dumps(public_policy)
|
|
)
|
|
print(f"Public read access policy set for bucket '{bucket_name}'.")
|
|
except ClientError as e:
|
|
print(f"Error setting public read access policy: {e}")
|
|
|
|
|
|
|
|
def create_bucket():
|
|
try:
|
|
from django.conf import settings
|
|
|
|
# Create a session using the credentials from Django settings
|
|
session = boto3.session.Session(
|
|
aws_access_key_id=settings.AWS_ACCESS_KEY_ID,
|
|
aws_secret_access_key=settings.AWS_SECRET_ACCESS_KEY,
|
|
)
|
|
|
|
# Create an S3 client using the session
|
|
s3_client = session.client('s3', endpoint_url=settings.AWS_S3_ENDPOINT_URL)
|
|
bucket_name = settings.AWS_STORAGE_BUCKET_NAME
|
|
|
|
print("Checking bucket...")
|
|
|
|
# Check if the bucket exists
|
|
s3_client.head_bucket(Bucket=bucket_name)
|
|
|
|
# If head_bucket does not raise an exception, the bucket exists
|
|
print(f"Bucket '{bucket_name}' already exists.")
|
|
|
|
set_bucket_public_policy(s3_client, bucket_name)
|
|
|
|
except ClientError as e:
|
|
error_code = int(e.response['Error']['Code'])
|
|
bucket_name = settings.AWS_STORAGE_BUCKET_NAME
|
|
if error_code == 404:
|
|
# Bucket does not exist, create it
|
|
print(f"Bucket '{bucket_name}' does not exist. Creating bucket...")
|
|
try:
|
|
s3_client.create_bucket(Bucket=bucket_name)
|
|
print(f"Bucket '{bucket_name}' created successfully.")
|
|
set_bucket_public_policy(s3_client, bucket_name)
|
|
except ClientError as create_error:
|
|
print(f"Failed to create bucket: {create_error}")
|
|
elif error_code == 403:
|
|
# Access to the bucket is forbidden
|
|
print(f"Access to the bucket '{bucket_name}' is forbidden. Check permissions.")
|
|
else:
|
|
# Another ClientError occurred
|
|
print(f"Failed to check bucket: {e}")
|
|
except Exception as ex:
|
|
# Handle any other exception
|
|
print(f"An error occurred: {ex}")
|
|
|
|
if __name__ == "__main__":
|
|
create_bucket()
|