F
Filament11mo ago
orestebh

Image attached to a RichEditor component is not displayed

I'm trying to upload an image to s3 from a RichEditor component. Upload the image well and save to s3, but after a while if you go to edit the registry the image is not displayed.
16 Replies
Patrick Boivin
Patrick Boivin11mo ago
Any errors in the browser console?
awcodes
awcodes11mo ago
Probably because the signing token has expired. You’re not going to be able to store html images unless the bucket is public.
orestebh
orestebh11mo ago
console: GET https://abc-uploads.s3.amazonaws.com/files/WnNTEdKhTEj3dXc6rRovMJDaCRMEedkD7c57YLPN.png..... 403(Forbidden) this is the code: RichEditor::make('description') ->required() ->fileAttachmentsDisk('s3') ->fileAttachmentsDirectory('files') ->fileAttachmentsVisibility('private') ->columnSpanFull(),
Patrick Boivin
Patrick Boivin11mo ago
Looks like an access issue... how can the browser show you the image if it's under a private visibility?
orestebh
orestebh11mo ago
the bucket is public, but in database field is saved with query string as Ej3dXc6rRovMJDaCRMEedkD7c57YLPN.png?X-Amz-Content-Sha256=UNSIGNED-PAYLOAD&X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Date=20230828T215 335Z&X -Amz-SignedHeaders=host&X-Amz-Expires=300&X-Amz-Signature=9edd7f8x-aws
Patrick Boivin
Patrick Boivin11mo ago
Sure, the bucket can be public by default but visibility is still controlled for each file (if I remember correctly... it's been about a year since my last project on AWS) So if the bucket is public, I should be able to see this from my machine, right? https://abc-uploads.s3.amazonaws.com/files/WnNTEdKhTEj3dXc6rRovMJDaCRMEedkD7c57YLPN.png I'm also getting a 403
orestebh
orestebh11mo ago
Patrick Boivin
Patrick Boivin11mo ago
Ok, I see. Sorry, I think I'm too rusty with S3 then, I'm not sure I can really help...
orestebh
orestebh11mo ago
thank you anyway
awcodes
awcodes11mo ago
This may be a bug. I can’t imagine why the headers would be part of the query string. That just seems dangerous to me. I would expect a signed token but not the headers.
orestebh
orestebh11mo ago
So when I access the image as it is saved in the database with the query strings it shows this <Error> <Code>AccessDenied</Code> <Message>Request has expired</Message> <X-Amz-Expires>300</X-Amz-Expires> <Expires>2023-08-28T21:58:35Z</Expires> <ServerTime>2023-08-28T22:35:55Z</ServerTime> <RequestId>81X79AD78SS0R0SB</RequestId> <HostId>JBxI3/XTlkK7iX/oSD0cbgG8GLS6udf+ZinwAOhTNjbuQQDpfaC0p9gdQerFO2+VVPUp9Apoh84=</HostId> </Error> but without the query string it accesses fine
awcodes
awcodes11mo ago
Yea. I don’t think any of that should be on the query string. But by the same token they would kinda have to be if it’s stored in the html in the db and was private. Has to be the expires header / parameter Wish I had a good answer for you, as someone who maintains a wysiwyg plugin. But also part of why I hate Aws.
orestebh
orestebh11mo ago
🙂
cheesegrits
cheesegrits11mo ago
The bucket may be public, but it looks like you are telling the RichEditor component that it's private, with ... 
->fileAttachmentsVisibility('private')
->fileAttachmentsVisibility('private')
... and as the RichEditor has no way of knowing if your bucket is public or private, it just goes by what you tell it, and generates pre-signed requests, as you can see in the code (it calls temporaryUrl() with a timeout). So try just removing that fileAttachmentsVisibility() line. https://github.com/filamentphp/filament/blob/3.x/packages/forms/src/Components/Concerns/HasFileAttachments.php#L120
GitHub
filament/packages/forms/src/Components/Concerns/HasFileAttachments....
A collection of beautiful full-stack components for Laravel. The perfect starting point for your next app. Using Livewire, Alpine.js and Tailwind CSS. - filamentphp/filament
orestebh
orestebh11mo ago
don´t works
cheesegrits
cheesegrits11mo ago
So what are the symptoms after you remove that line, and upload a new image?
Want results from more Discord servers?
Add your server
More Posts
How to add properties to a file?Is it possible to add a custom property to a file using the FileUpload component with Filepond? SomRoute [login] not defined with secondary PanelIf I try to login from a secondary panel it gives me the above error, for example: example.test/tesAttempting to use ListeRecords Tabs in with Standalone Tables with a modified traitSo i setup a simple trait that does the basics and it kind of works. The problem is that on initial renderHook scopes don't workHi- I'm new to this so probably doing it wrong: in panel(): ```php ->renderHook( Does spatie-laravel-settings-plugin support tenant ?I couldn't find any resource related to tenantHow to refresh a relation manager after a page action ?I would like to refresh a relation manager after an action triggered in a resource edit page, I woulusing AsEnumArrayObject with enumswhen I try to use `AsEnumArrayObject` in casting in my model: ``` protected $casts = [ 'permissiotable without modelhow can use table without model .?Drop down list in top barHi, I want to add a drop down list on the topbar, can any one please tell how I can do that? Or maybTrying to getting data from RelationshipHi, trying to use ->mutateFormDataUsing in headerActions of a relation that I have from another tabl