Announcement

Collapse
No announcement yet.

Amazon S3 File Writer permissions

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • Amazon S3 File Writer permissions

    Hello -
    I am attempting to write a file to an Amazon S3 bucket.

    The file is successfully written, but they are stating that the files say that they are getting "access denied" when attempting to read them.

    The files are just txt files, and I have the file type as txt with the raw data. It is a simple pick up and deliver to the bucket.

    Any idea on what could be causing them to receive a permission denied on the files?
    Last edited by tdickerson; 05-02-2020, 07:20 AM. Reason: Solved

  • #2
    "access denied" has nothing to do with the file type. They either don't have access to file or the folder. It is a permissions issue.

    Comment


    • #3
      yes, I understand it is a permissions issue. I was attempting to explain the issue.

      do you have an answer for the permission issue?

      Comment


      • #4
        What are the permissions on the file?

        Comment


        • #5
          I did have one client that used Mirth and S3 that we had to SPECIFY the encryption method in the Custom HTTP Headers, but I no longer have access to that server. Might just make sure that your encryption methods aren't too strict.

          -= Jack Haines : Founder/CEO of Healthcare Integrations, LLC
          -= [email protected]
          -= Mirth Connect (Advanced)-certified
          -= Gold member of HL7.org
          -= Available for Mirth Connect channel development and consultation! Schedule a FREE call with me at https://calendly.com/jackhaines

          Comment


          • #6
            Message back from the owner on the bucket

            They want me to add this into the channel for the permissions. Anyone know where to add?
            --acl bucket-owner-full-control

            Comment


            • #7
              Originally posted by tdickerson View Post
              They want me to add this into the channel for the permissions. Anyone know where to add?
              --acl bucket-owner-full-control
              I don't think that's something that would be added into the channel right? Wouldn't that configuration be done on the AWS side for the IAM user/role that's being used to access that bucket?
              Step 1: JAVA CACHE...DID YOU CLEAR ...wait, ding dong the witch is dead?

              Nicholas Rupley
              Work: 949-237-6069
              Always include what Mirth Connect version you're working with. Also include (if applicable) the code you're using and full stacktraces for errors (use CODE tags). Posting your entire channel is helpful as well; make sure to scrub any PHI/passwords first.


              - How do I foo?
              - You just bar.

              Comment


              • #8
                Permissions

                Hi - this is what they have responded with when I have attempted to upload the files through Mirth. When this does not work, then my linux admin does it manually with that line.

                Please ask your IT team to repost the files will full access permission, with command like this: --acl bucket-owner-full-control

                Comment


                • #9
                  Who owns the S3 bucket from an administration perspective?

                  See https://docs.aws.amazon.com/AmazonS3...rmissions.html

                  I'd suspect you and the other party are using different credentials to write vs read files or there are specific s3 bucket policies stopping the access.

                  I think https://aws.amazon.com/premiumsuppor...-owner-access/ this may be your problem.

                  Note https://aws.amazon.com/premiumsuppor...ect-ownership/ also.
                  Last edited by pacmano; 04-23-2020, 09:22 AM.
                  Mirth 3.8.0 / PostgreSQL 11 / Ubuntu 18.04
                  Diridium Technologies, Inc.
                  https://diridium.com

                  Comment


                  • #10
                    https://docs.aws.amazon.com/AmazonS3..._RequestSyntax

                    Try adding this to the custom HTTP headers:
                    x-amz-acl : bucket-owner-full-control

                    Comment


                    • #11
                      Configured for tomorrow

                      Hi -
                      The bucket is owned by someone else, and I am placing the file into their bucket. The links you both provided have been helpful.

                      I am using this link for the attempt tomorrow.
                      https://docs.aws.amazon.com/AmazonS3..._RequestSyntax

                      I have added the x-amz-acl : bucket-owner-full-control to the HTTP header. I will let you know if works tomorrow.

                      Thanks!

                      Comment


                      • #12
                        It worked!

                        Hi -
                        The vendor stated that they received the files.
                        This was in the Messages for the files sent:
                        [CUSTOM HEADERS]
                        x-amz-acl: bucket-owner-full-control

                        Thanks so much for the help!

                        Comment


                        • #13
                          Great! And thanks for the follow up. You might edit your original post... go advanced and add (SOLVED) to it.
                          Mirth 3.8.0 / PostgreSQL 11 / Ubuntu 18.04
                          Diridium Technologies, Inc.
                          https://diridium.com

                          Comment


                          • #14
                            Thanks

                            I did the edit and go advanced and added solved. Was that right?

                            Comment


                            • #15
                              Yes. Not many people do it but it a helpful for others!
                              Mirth 3.8.0 / PostgreSQL 11 / Ubuntu 18.04
                              Diridium Technologies, Inc.
                              https://diridium.com

                              Comment

                              Working...
                              X