Make object storage ACL configurable

Override this value to allow uploads to non-public S3 buckets. Otherwise "AccessDenied: Access Denied" errors will end up in the log. Fixes #4850
author: Doug Luce <doug@github.con.com> 2022-03-15 08:57:12 -0700
committer: Chocobozzz <chocobozzz@cpy.re> 2022-03-16 10:58:01 +0100
commit: f9915efa5ea0714178fc60d11a0d5434e7b1e600 (patch)
tree: cf2e7249a64a4af73a89aa19c755d5eec0ab9fe2 /config
parent: 60233e90d280eb865d396b30b63c0e88d13ca7db (diff)
download: PeerTube-f9915efa5ea0714178fc60d11a0d5434e7b1e600.tar.gz
PeerTube-f9915efa5ea0714178fc60d11a0d5434e7b1e600.tar.zst
PeerTube-f9915efa5ea0714178fc60d11a0d5434e7b1e600.zip
2 files changed, 6 insertions, 0 deletions
diff --git a/config/default.yaml b/config/default.yaml
index 42ce12c18..6db8d3803 100644
--- a/config/default.yaml
+++ b/config/default.yaml
@@ -138,6 +138,9 @@ object_storage:
  region: 'us-east-1'
+  # Set this ACL on each uploaded object
+  upload_acl: 'public-read'
  credentials:
    # You can also use AWS_ACCESS_KEY_ID env variable
    access_key_id: ''
diff --git a/config/production.yaml.example b/config/production.yaml.example
index bb1b4615b..e6e85da12 100644
--- a/config/production.yaml.example
+++ b/config/production.yaml.example
@@ -134,6 +134,9 @@ object_storage:
  region: 'us-east-1'
+  # Set this ACL on each uploaded object
+  upload_acl: 'public'
  credentials:
    # You can also use AWS_ACCESS_KEY_ID env variable
    access_key_id: ''
author	Doug Luce <doug@github.con.com>	2022-03-15 08:57:12 -0700
committer	Chocobozzz <chocobozzz@cpy.re>	2022-03-16 10:58:01 +0100
commit	f9915efa5ea0714178fc60d11a0d5434e7b1e600 (patch)
tree	cf2e7249a64a4af73a89aa19c755d5eec0ab9fe2 /config
parent	60233e90d280eb865d396b30b63c0e88d13ca7db (diff)
download	PeerTube-f9915efa5ea0714178fc60d11a0d5434e7b1e600.tar.gz PeerTube-f9915efa5ea0714178fc60d11a0d5434e7b1e600.tar.zst PeerTube-f9915efa5ea0714178fc60d11a0d5434e7b1e600.zip