forked from matteo/serves3
1
0
Fork 0
A simple proxy to browse files from private S3 buckets. Helpful to be put behind another authenticating web server, such as Apache or NGINX.
Go to file
Matteo Settenvini 74a7ab55f5 Print bucket endpoint and name at start 2023-07-02 17:54:26 +02:00
.vscode Avoid depending on system openssl 2023-07-02 17:46:47 +02:00
LICENSES Connect and retrieve initial bucket index 2023-07-01 13:37:21 +02:00
src Print bucket endpoint and name at start 2023-07-02 17:54:26 +02:00
templates Serve both files and directories 2023-07-02 02:06:27 +02:00
.gitignore Connect and retrieve initial bucket index 2023-07-01 13:37:21 +02:00
.pre-commit-config.yaml Connect and retrieve initial bucket index 2023-07-01 13:37:21 +02:00
Cargo.lock Avoid depending on system openssl 2023-07-02 17:46:47 +02:00
Cargo.lock.license Connect and retrieve initial bucket index 2023-07-01 13:37:21 +02:00
Cargo.toml Avoid depending on system openssl 2023-07-02 17:46:47 +02:00
README.md Serve both files and directories 2023-07-02 02:06:27 +02:00
Settings.toml.example Connect and retrieve initial bucket index 2023-07-01 13:37:21 +02:00

README.md

[//]: # SPDX-FileCopyrightText: © Matteo Settenvini matteo.settenvini@montecristosoftware.eu [//]: # SPDX-License-Identifier: EUPL-1.2

serves3

A very simple proxy to browse files from private S3 buckets.

Helpful to be put behind another authenticating web server, such as Apache or NGINX.

Also helpful to do a different TLS termination.

Configuration

Copy Settings.toml.example to Settings.toml and adjust your settings.

You can also add a Rocket.toml file to customize the server options. See the Rocket documentation.

Then just configure Apache or NGINX to proxy to the given port. For example:

<VirtualHost *:443>
    ServerName example.com
    ServerAdmin support@example.com
    DocumentRoot /var/www

    ProxyPreserveHost On
    ProxyPass /s3/ http://127.0.0.1:8000/
    ProxyPassReverse /s3/ http://127.0.0.1:8000/

    # ... other options ...
</VirtualHost>

You probably also want a systemd unit file, for instance /etc/systemd/system/serves3@.service:

[Unit]
Description=ServeS3, a S3 proxy
StartLimitInterval=100
StartLimitBurst=10

[Service]
Type=simple
ExecStart=/usr/local/bin/serves3
WorkingDirectory=/etc/serves3/%i/
Environment=ROCKET_PORT=%i

Restart=always
RestartSec=5s

[Install]
WantedBy=multi-user.target

Then, e.g. for running on port 8000, you would put the corresponding configuration file in /etc/serves3/8000/ and install the unit with systemctl enable --now servers3@8000.service.

Build and install

cargo install --root /usr/local # for instance
cd run-folder # folder with Settings.toml
serves3