Configure activestorage for production

access keys and region are configured using environment variables
2020-04-09 12:24:18 +02:00 · 2020-04-09 12:24:18 +02:00 · 829f534afd
commit 829f534afd
parent c1b9f8e701
4 changed files with 25 additions and 6 deletions
--- a/1
+++ b/1
@ -23,6 +23,7 @@ gem 'bootsnap', '>= 1.4.2', require: false

 gem 'lockbox'

+gem 'aws-sdk-s3', require: false
 # gem 'airrecord'
 gem 'google-api-client'
 gem 'rack-cors'
--- a/Gemfile.lock
+++ b/Gemfile.lock
@ -58,6 +58,22 @@ GEM
      zeitwerk (~> 2.2)
    addressable (2.7.0)
      public_suffix (>= 2.0.2, < 5.0)
+    aws-eventstream (1.0.3)
+    aws-partitions (1.263.0)
+    aws-sdk-core (3.89.1)
+      aws-eventstream (~> 1.0, >= 1.0.2)
+      aws-partitions (~> 1, >= 1.239.0)
+      aws-sigv4 (~> 1.1)
+      jmespath (~> 1.0)
+    aws-sdk-kms (1.27.0)
+      aws-sdk-core (~> 3, >= 3.71.0)
+      aws-sigv4 (~> 1.1)
+    aws-sdk-s3 (1.60.1)
+      aws-sdk-core (~> 3, >= 3.83.0)
+      aws-sdk-kms (~> 1)
+      aws-sigv4 (~> 1.1)
+    aws-sigv4 (1.1.0)
+      aws-eventstream (~> 1.0, >= 1.0.2)
    bootsnap (1.4.6)
      msgpack (~> 1.0)
    builder (3.2.4)
@ -96,6 +112,7 @@ GEM
      concurrent-ruby (~> 1.0)
    jbuilder (2.10.0)
      activesupport (>= 5.0.0)
+    jmespath (1.4.0)
    jwt (2.2.1)
    listen (3.2.1)
      rb-fsevent (~> 0.10, >= 0.10.3)
@ -219,6 +236,7 @@ PLATFORMS
  ruby

 DEPENDENCIES
+  aws-sdk-s3
  bootsnap (>= 1.4.2)
  byebug
  dotenv-rails
--- a/config/environments/production.rb
+++ b/config/environments/production.rb
@ -36,7 +36,7 @@ Rails.application.configure do
  # config.action_dispatch.x_sendfile_header = 'X-Accel-Redirect' # for NGINX

  # Store uploaded files on the local file system (see config/storage.yml for options).
-  config.active_storage.service = :local
+  config.active_storage.service = :amazon

  # Mount Action Cable outside main process or domain.
  # config.action_cable.mount_path = nil
--- a/config/storage.yml
+++ b/config/storage.yml
@ -6,13 +6,13 @@ local:
  service: Disk
  root: <%= Rails.root.join("storage") %>

-# Use rails credentials:edit to set the AWS secrets (as aws:access_key_id|secret_access_key)
-# amazon:
-#   service: S3
+# access keys and region are configured using environment variables
+amazon:
+  service: S3
+  bucket: ENV['AWS_S3_BUCKET']
 #   access_key_id: <%= Rails.application.credentials.dig(:aws, :access_key_id) %>
 #   secret_access_key: <%= Rails.application.credentials.dig(:aws, :secret_access_key) %>
-#   region: us-east-1
-#   bucket: your_own_bucket
+#   region: ENV['AWS_REGION']

 # Remember not to checkin your GCS keyfile to a repository
 # google: