1. 首頁
  2. 問答
  3. AWS S3 - com.amazonaws.AmazonServiceException:請求ARN無效

AWS S3 - com.amazonaws.AmazonServiceException:請求ARN無效

2015-06-28 73 views
1

我試圖讓我的android應用程序從AWS S3下載圖像。但是,下面的例外不斷出現:AWS S3 - com.amazonaws.AmazonServiceException:請求ARN無效

com.amazonaws.AmazonServiceException: Request ARN is invalid (Service: AWSSecurityTokenService; Status Code: 400; Error Code: ValidationError; Request ID: 3481bd5f-1db2-11e5-8442-cb6f713243b6) 
      at com.amazonaws.http.AmazonHttpClient.handleErrorResponse(AmazonHttpClient.java:710) 
      at com.amazonaws.http.AmazonHttpClient.executeHelper(AmazonHttpClient.java:385) 
      at com.amazonaws.http.AmazonHttpClient.execute(AmazonHttpClient.java:196) 
      at com.amazonaws.services.securitytoken.AWSSecurityTokenServiceClient.invoke(AWSSecurityTokenServiceClient.java:875) 
      at com.amazonaws.services.securitytoken.AWSSecurityTokenServiceClient.assumeRoleWithWebIdentity(AWSSecurityTokenServiceClient.java:496) 
      at com.amazonaws.auth.CognitoCredentialsProvider.populateCredentialsWithSts(CognitoCredentialsProvider.java:671) 
      at com.amazonaws.auth.CognitoCredentialsProvider.startSession(CognitoCredentialsProvider.java:555) 
      at com.amazonaws.auth.CognitoCredentialsProvider.refresh(CognitoCredentialsProvider.java:503) 
      at com.application.app.utils.helper.S3Utils.getCredProvider(S3Utils.java:35) 
      at com.application.app.utils.helper.S3Utils.getS3Client(S3Utils.java:45) 
      at com.application.app.integration.volley.CustomImageRequest.parseNetworkError(CustomImageRequest.java:73) 
      at com.android.volley.NetworkDispatcher.parseAndDeliverNetworkError(NetworkDispatcher.java:144) 
      at com.android.volley.NetworkDispatcher.run(NetworkDispatcher.java:135)

我有一個存儲桶和身份池。另外,創建了所需的角色。

我Cognito_APPUnauth_Role具有以下INLINE政策:

{ 
    "Version": "2012-10-17", 
    "Statement": [ 
     { 
      "Sid": "Stmt1435504517000", 
      "Effect": "Allow", 
      "Action": [ 
       "s3:GetObject", 
       "s3:ListBucket" 
      ], 
      "Resource": [ 
       "arn:aws:s3:::mybucket/*" 
      ] 
     } 
    ] 
}

我有一個名爲S3Utils Java類,有一些輔助方法。當異常發生時,在CustomImageRequest.java方法

public class S3Utils { 
    private static AmazonS3Client sS3Client; 

    private static CognitoCachingCredentialsProvider sCredProvider; 

    public static CognitoCachingCredentialsProvider getCredProvider(Context context){ 
     if (sCredProvider == null) { 
      sCredProvider = new CognitoCachingCredentialsProvider(
        context, 
        Definitions.AWS_ACCOUNT_ID, 
        Definitions.COGNITO_POOL_ID, 
        Definitions.COGNITO_ROLE_UNAUTH, 
        null, 
        Regions.US_EAST_1 
      ); 
     } 

     sCredProvider.refresh(); 
     return sCredProvider; 
    } 

    public static String getPrefix(Context context) { 
     return getCredProvider(context).getIdentityId() + "/"; 
    } 

    public static AmazonS3Client getS3Client(Context context) { 
     if (sS3Client == null) { 
      sS3Client = new AmazonS3Client(getCredProvider(context)); 
     } 
     return sS3Client; 
    } 

    public static String getFileName(String path) { 
     return path.substring(path.lastIndexOf("/") + 1); 
    } 

    public static boolean doesBucketExist() { 
     return sS3Client.doesBucketExist(Definitions.BUCKET_NAME.toLowerCase(Locale.US)); 
    } 

    public static void createBucket() { 
     sS3Client.createBucket(Definitions.BUCKET_NAME.toLowerCase(Locale.US)); 
    } 

    public static void deleteBucket() { 
     String name = Definitions.BUCKET_NAME.toLowerCase(Locale.US); 
     List<S3ObjectSummary> objData = sS3Client.listObjects(name).getObjectSummaries(); 
     if (objData.size() > 0) { 
      DeleteObjectsRequest emptyBucket = new DeleteObjectsRequest(name); 
      List<DeleteObjectsRequest.KeyVersion> keyList = new ArrayList<DeleteObjectsRequest.KeyVersion>(); 
      for (S3ObjectSummary summary : objData) { 
       keyList.add(new DeleteObjectsRequest.KeyVersion(summary.getKey())); 
      } 
      emptyBucket.withKeys(keyList); 
      sS3Client.deleteObjects(emptyBucket); 
     } 
     sS3Client.deleteBucket(name); 
    } 
}

部分:

s3Client = S3Utils.getS3Client(context); 
      ObjectListing objects = s3Client.listObjects(new ListObjectsRequest().withBucketName(Definitions.BUCKET_NAME).withPrefix(this.urlToRetrieve)); 
      List<S3ObjectSummary> objectSummaries = objects.getObjectSummaries(); 
      //This isn't just an id, it is a full picture name in S3 bucket. 
      for (S3ObjectSummary summary : objectSummaries) 
      { 
       String key = summary.getKey(); 
       if (!key.equals(this.urlToRetrieve)) continue; 
       S3ObjectInputStream content = s3Client.getObject(Definitions.BUCKET_NAME, key).getObjectContent(); 
       try { 
        this.s3Image = IOUtils.toByteArray(content); 

       } catch (IOException e) { 
       } 

       return new Object(); 
      }

我在做什麼錯誤導致該異常拋出每次。提前致謝。

來源

2015-06-28 Jorge Cespedes

回答

0

我猜你可能在你指定的角色ARN中有錯誤。角色ARN應該是這個樣子

阿爾恩:AWS:cognito身份:美國東部-1:ACCOUNTNUMBER:identitypool /美東1:UUID

如果拼寫錯誤,或部分離開的你可能會得到錯誤。您可能還想考慮用戶新的CognitoCachingCredentialsProvider構造函數。

sCredProvider = new CognitoCachingCredentialsProvider(
       context, 
       Definitions.COGNITO_POOL_ID, 
       Regions.US_EAST_1 
     );

但是請注意,您必須確保您已在Cognito控制檯中指定角色ARN,但它應該有助於避免將來出現此問題。

爲清楚起見,格式化進行了編輯,並補充說如果使用新的構造函數,則需要在控制檯中修改ARN。

來源

2015-06-29 17:19:01 WestonE

相關問題

 相關問題