Uploaded image for project: 'Activiti'
  1. Activiti
  2. ACTIVITI-789

Implementation of more secure mechanism to connect with S3 for contentstorage location

    Details

    • Type: Feature
    • Status: Closed (View Workflow)
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: APS 1.6.0
    • Fix Version/s: None
    • Component/s: Kickstart/Studio
    • Labels:
      None
    • ACT Numbers:

      00832012

    • Sprint:
      Docs Sprint 18

      Description

      Summary

      Currently, S3 AWS is not fully documented for implementation with Alfresco Process Services. Given that it is used and supported the issue at hand is the security of configuration is not sufficient for some customers.

      • we do not document configuration or how to set it up, but basic configuration is in activiti-app.properties
        contentstorage.s3.accessKey
        contentstorage.s3.secretKey
        contentstorage.s3.bucketName
        contentstorage.s3.objectKeyPrefix 
        
      • we do have this configuration handled in our code base, since versions 1.3.N to current
        see ref: /activiti-bpm-suite/activiti-app/src/main/java/com/activiti/conf/ContentStorageConfiguration.java

      Business Case

      Customer is intending to use S3 AWS location for contentstorage. The current implementation does not provide enough security regarding the accessKey/securityKeys for S3. Currently they are added in the activiti-app.properties file.

      The request is provision of secure implementation/configuration in the product when using S3 AWS for contentstorage with Alfresco Process Services

      Additional References for possible implementation with InstanceProfileCredentialsProvider:

      AWS credentials and InstanceProfileCredentialsProvider reference:

        TestRail: Results

          Attachments

            Issue Links

              Structure

                Activity

                  People

                  • Assignee:
                    dgruber Daniel Gruber (Inactive)
                    Reporter:
                    jsoria Jennie Soria [X] (Inactive)
                  • Votes:
                    1 Vote for this issue
                    Watchers:
                    5 Start watching this issue

                    Dates

                    • Created:
                      Updated:

                      TestRail: Cases

                        Structure Helper Panel