Add CORS configuration to a S3 bucket using AWS CDK

by Rehan Haider, Sun 05 November 2023 Category: AWS Academy

Cross-Origin Resource Sharing (CORS) is a mechanism that allows restricted resources on a web page to be requested from another domain outside the domain from which the first resource was served.

Since all S3 buckets use https://s3.amazonaws.com as the domain, you need to configure CORS to allow access from other domains so be able to access the objects in the S3 bucket.

E.g. if a user tries to upload a file to an S3 bucket from a web page hosted on https://example.com, the browser will block the request unless CORS is configured to allow access from https://example.com.

Setup CORS for S3 bucket

You can configure CORS on the S3 bucket by using the cors property of the Bucket construct.

# filename: cdk_app/s3_stack.py
from aws_cdk import (
    Stack,
    aws_s3 as s3,
)

from constructs import Construct


class S3Stack(Stack):
    BUCKET_ID = "MyS3Bucket"

    def __init__(self, scope: Construct, construct_id: str, **kwargs) -> None:
        super().__init__(scope, construct_id, **kwargs)

        my_bucket = s3.Bucket(
            self,
            id=self.BUCKET_ID,
            # 👇🏽 Sset the CORS configuration
            cors=[
                {
                    "allowedMethods": [
                        s3.HttpMethods.PUT,
                    ],
                    "allowedOrigins": ["https://www.example.com"],
                    "allowedHeaders": ["*"],
                }
            ],
        )

In the above code, we have set the CORS configuration to allow PUT requests from https://www.example.com with any headers. This will allow users to upload files to the S3 bucket from https://www.example.com.

Configure multiple CORS rules

You can configure multiple CORS rules by adding multiple dictionaries to the cors property.

```python

filename: cdk_app/s3_stack.py

from aws_cdk import ( Stack, aws_s3 as s3, )

from constructs import Construct

class S3Stack(Stack): BUCKET_ID = "MyS3Bucket"

def __init__(self, scope: Construct, construct_id: str, **kwargs) -> None:
    super().__init__(scope, construct_id, **kwargs)

    my_bucket = s3.Bucket(
        self,
        id=self.BUCKET_ID,
        # 👇🏽 Sset the CORS configuration
        cors=[
            {
                "allowedMethods": [
                    s3.HttpMethods.PUT,
                ],
                "allowedOrigins": ["https://www.example.com"],
                "allowedHeaders": ["*"],
            },
            {
                "allowedMethods": [
                    s3.HttpMethods.GET,
                ],
                "allowedOrigins": ["https://www.example.com"],
                "allowedHeaders": ["*"],
            },
        ],
    )
Need Help? Open a discussion thread on GitHub.
#aws#cdk#python

Related Posts

📄
How to create a lambda function using AWS CDK in Python
📄
How to import an existing lambda function using AWS CDK in Python
📄
Import an existing S3 bucket in CDK
📄
Manage Python dependencies in AWS Lambda using AWS CDK
📄
Using Lambda Layers with AWS CDK in Python