NodeBB have a work plugin for upload files on S3?

Matthew Price

The S3 plugin is a bit strange as there are a few variants as a lot of them appear to be forked and then abandoned again.

We were originally going to look at redeveloping our own plugin but found this one worked for our needs and still works in the latest version:

nodebb-plugin-s3-uploads-updated-again

A plugin for NodeBB to take file uploads and store them on S3 updated for nodebb 1.17+. Latest version: 0.4.0, last published: 4 years ago. Start using nodebb-plugin-s3-uploads-updated-again in your project by running `npm i nodebb-plugin-s3-uploads-updated-again`. There are no other projects in the npm registry using nodebb-plugin-s3-uploads-updated-again.

npm (www.npmjs.com)

julian

updated-again Ha!

The one under the NodeBB-Community org should be the most compatible with v2, but if there are issues, please let me know.

As far as I know, the admin panel should be working...

brazzerstop

@Matthew-Price

Wow! Thank you! This plugin work correctly, he is save information in ACP without errors and I can upload my first file

brazzerstop

@Matthew-Price

Do you know if this plugin can be configured to upload files to an S3 compatible gateway?

The provider informs that we need to specify the address of the endpoint site in the settings, but this option is not provided in this plugins for NodeBB...

Uploading to AWS works good, but they only give 5GB of free storage, and the decentralized provider is as much as 150GB, the Discourse forums have an endpoint setting out of the box and there is a plugin for Flarum that allows you to configure this and cdn url.

Very handy for example for automatic backups to the cloud and 150GB is a very generous storage space for the free plan, users can upload many pictures, videos, audio...

brazzerstop

UPD

On 3.0.0 version NodeBB all this plugins didn't work, the ACP (admin/plugins/s3-uploads) show error req.csrfToken is not a function

@dasmeta/nodebb-plugin-upload
@NodeBB-Community/nodebb-plugin-s3-uploads
@nodebb-plugin-s3-uploads-updated-again

And after installed this plugins, the console show alert about npm packages vulnerabilities... it's not good.

user@server:/var/www/forum/nodebb# npm install NodeBB-Community/nodebb-plugin-s3-uploads
npm WARN deprecated [email protected]: This version has been deprecated in accordance with the hapi support policy (hapi.im/support). Please upgrade to the latest version to get the best features, bug fixes, and security patches. If you are unable to upgrade at this time, paid support is available for older versions (hapi.im/commercial).
npm WARN deprecated [email protected]: This version has been deprecated in accordance with the hapi support policy (hapi.im/support). Please upgrade to the latest version to get the best features, bug fixes, and security patches. If you are unable to upgrade at this time, paid support is available for older versions (hapi.im/commercial).
npm WARN deprecated [email protected]: This module moved to @hapi/sntp. Please make sure to switch over as this distribution is no longer supported and may contain bugs and critical security issues.
npm WARN deprecated [email protected]: The querystring API is considered Legacy. new code should use the URLSearchParams API instead.
npm WARN deprecated [email protected]: Please upgrade  to version 7 or higher.  Older versions may use Math.random() in certain circumstances, which is known to be problematic.  See https://v8.dev/blog/math-random for details.
npm WARN deprecated [email protected]: ReDoS vulnerability parsing Set-Cookie https://nodesecurity.io/advisories/130
npm WARN deprecated [email protected]: Use uuid module instead
npm WARN deprecated [email protected]: this library is no longer supported
npm WARN deprecated [email protected]: This version has been deprecated in accordance with the hapi support policy (hapi.im/support). Please upgrade to the latest version to get the best features, bug fixes, and security patches. If you are unable to upgrade at this time, paid support is available for older versions (hapi.im/commercial).
npm WARN deprecated [email protected]: request has been deprecated, see https://github.com/request/request/issues/3142
npm WARN deprecated [email protected]: This module moved to @hapi/hawk. Please make sure to switch over as this distribution is no longer supported and may contain bugs and critical security issues.

added 63 packages, and audited 1559 packages in 14s

180 packages are looking for funding
  run `npm fund` for details

24 vulnerabilities (11 moderate, 11 high, 2 critical)

baris

It's due to a breaking change in 3.x https://github.com/NodeBB/NodeBB/pull/11237, plugins that use req.csrfToken() will need to be updated.

djensen47

Any thoughts on when the plugin will be fixed for 3.x?

baris

The req.csrfToken issue should be resolved so the plugin might be working now. I haven't tested with latest NodeBB.

tchesley85

Hi All, is there anyone using S3 nowadays?

baris

I updated our fork at https://github.com/NodeBB-Community/nodebb-plugin-s3-uploads to nodebb 3.2.0 and up. Latest version is @nodebb/[email protected].