Move AWS secrets from .env to lookit-api and add S3 error handling
#85
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…s from document, throw errors for expired credentials
…ase one of the uploadPart promises throws an error, and catch an ExpiredCredentials error from uploadPart in the completeUpload catch block
… and completeUpload
🦋 Changeset detectedLatest commit: 7fc4b24 The changes in this PR will be included in the next version bump. This PR includes changesets to release 5 packages
Not sure what this means? Click here to learn what changesets are. Click here if you're a maintainer who wants to add another changeset to this PR |
okaycj
approved these changes
Oct 29, 2024
|
I want to get these updates into API, so I resolved the conflicts with "main" and removed "data"'s |
@okaycj these were very straightforward changes and I agree we need to get this merged ASAP, so thanks for getting it done! |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR moves the AWS S3 secrets for jsPsych video uploading out of an environment variable in the
datapackage. They'll now be available to thedatapackage via thelookit-api(including in local development).The AWS secrets have also been changed to temporary credentials, so this adds checks and error handling for an 'expired token' error that can occur in response to any request sent to AWS S3.
List of changes
datapackage.envfile to thelookit-api. This means that the variables are obtained from the document at runtime, and we are no longer using thedotenvpackage orprocess.envindata.MissingCredentialserror for when the AWS credentials are not found on the page.ExpiredCredentialserror for when the AWS credentials have expired.Important
This change to lookit-jspsych must be made in conjunction with the corresponding change in
lookit-api, which adds the AWS secret temporary credentials into the jsPsych study template.To do
In the future we should change this to an API call. This will allow us to refresh the credentials if they expire during a session (assuming the user is logged in), instead of requiring the user to start a new session.