Something wrong with S3 Compatible Services while uploading #1789

New Issue

Closed

opened 2026-02-05 01:52:56 +03:00 by OVERLORD · 8 comments

OVERLORD commented 2026-02-05 01:52:56 +03:00

Owner

Copy Link

Originally created by @Creling on GitHub (Jul 11, 2020).

Hello:
I'm now working with BookStack v0.29.3.
I configure the S3 Compatible Services like the image below and the server provider is backblaze.

STORAGE_TYPE=s3
STORAGE_S3_KEY="002ed5b38xxxxxx"
STORAGE_S3_SECRET="K002xxxxx"
STORAGE_S3_BUCKET="<bucket-name>"
STORAGE_S3_ENDPOINT="https://s3.us-west-002.backblazeb2.com"
STORAGE_URL="https://s3.us-west-002.backblazeb2.com/<bucket-name>"

However, when I try to upload images from clipboard, an error occurred:

PS: The permissions are ok.

Originally created by @Creling on GitHub (Jul 11, 2020). Hello: I'm now working with **BookStack v0.29.3**. I configure the S3 Compatible Services like the image below and the server provider is backblaze. ``` STORAGE_TYPE=s3 STORAGE_S3_KEY="002ed5b38xxxxxx" STORAGE_S3_SECRET="K002xxxxx" STORAGE_S3_BUCKET="<bucket-name>" STORAGE_S3_ENDPOINT="https://s3.us-west-002.backblazeb2.com" STORAGE_URL="https://s3.us-west-002.backblazeb2.com/<bucket-name>" ``` However, when I try to upload images from clipboard, an error occurred:   PS: The permissions are ok.

OVERLORD closed this issue 2026-02-05 01:52:57 +03:00

OVERLORD commented 2026-02-05 01:53:00 +03:00

Author

Owner

Copy Link

@fabiodcorreia commented on GitHub (Aug 26, 2020):

I have this working for that same version, I had that problem but it was because the app key was wrong and needs to be the applicationKey.

@fabiodcorreia commented on GitHub (Aug 26, 2020): I have this working for that same version, I had that problem but it was because the app key was wrong and needs to be the applicationKey.

OVERLORD commented 2026-02-05 01:53:06 +03:00

Author

Owner

Copy Link

@ssddanbrown commented on GitHub (Dec 11, 2020):

So I've just given this a test.

This can occur when attempting to upload an image within a public bucket. By default BookStack will upload files as private then mark them as public. Unfortunately backblaze will reject a request to upload a private file within a public bucket.

We could work around that quite simply, but it does mean that backblaze can't really be used as the only storage mechanism for BookStack without at least exposing attachment files, until it's able to support both private and public files within a single bucket.

We could technically add support for multiple buckets so you could have one for attachments and one for images but I don't think that'd be worth the effort, support and maintenance just for backblaze. Shame as I really like b2 storage.

@ssddanbrown commented on GitHub (Dec 11, 2020): So I've just given this a test. This can occur when attempting to upload an image within a public bucket. By default BookStack will upload files as private then mark them as public. Unfortunately backblaze will reject a request to upload a private file within a public bucket. We could work around that quite simply, but it does mean that backblaze can't really be used as the only storage mechanism for BookStack without at least exposing attachment files, until it's able to support both private and public files within a single bucket. We could technically add support for multiple buckets so you could have one for attachments and one for images but I don't think that'd be worth the effort, support and maintenance just for backblaze. Shame as I really like b2 storage.

OVERLORD commented 2026-02-05 01:53:07 +03:00

Author

Owner

Copy Link

@ssddanbrown commented on GitHub (Mar 9, 2021):

Closing this off as multiple potential solutions have been provided and there has been no further discussion.

@ssddanbrown commented on GitHub (Mar 9, 2021): Closing this off as multiple potential solutions have been provided and there has been no further discussion.

OVERLORD commented 2026-02-05 01:53:11 +03:00

Author

Owner

Copy Link

@Akarys42 commented on GitHub (Nov 27, 2022):

@ssddanbrown I am still experiencing this issue, which means I cannot deploy BookStack to our infrastructure and had to roll back, due to our CDN being backed by Backblaze.

We could work around that quite simply, but it does mean that backblaze can't really be used as the only storage mechanism for BookStack without at least exposing attachment files, until it's able to support both private and public files within a single bucket.

That seems like an acceptable trade-off to me. The files shouldn't be uploaded as private and then switched to public. Would it be possible to re-open the issue and implement this?

@Akarys42 commented on GitHub (Nov 27, 2022): @ssddanbrown I am still experiencing this issue, which means I cannot deploy BookStack to our infrastructure and had to roll back, due to our CDN being backed by Backblaze. > We could work around that quite simply, but it does mean that backblaze can't really be used as the only storage mechanism for BookStack without at least exposing attachment files, until it's able to support both private and public files within a single bucket. That seems like an acceptable trade-off to me. The files shouldn't be uploaded as private and then switched to public. Would it be possible to re-open the issue and implement this?

OVERLORD commented 2026-02-05 01:53:13 +03:00

Author

Owner

Copy Link

@ssddanbrown commented on GitHub (Nov 27, 2022):

@Akarys42 Are you sure the issue is the same? Although the error message may appear the same, it does not indicate the same underlying issue. Permission handling for s3-like usages has since changed to avoid permission setting actions.

@ssddanbrown commented on GitHub (Nov 27, 2022): @Akarys42 Are you sure the issue is the same? Although the error message may appear the same, it does not indicate the same underlying issue. Permission handling for s3-like usages has since changed to avoid permission setting actions.

OVERLORD commented 2026-02-05 01:53:17 +03:00

Author

Owner

Copy Link

@Akarys42 commented on GitHub (Nov 27, 2022):

@ssddanbrown yes, the error happens when trying to upload a new avatar for example. The file is uploaded with the private canned ACL which gets rejected by Backblaze since the bucket is public.

@Akarys42 commented on GitHub (Nov 27, 2022): @ssddanbrown yes, the error happens when trying to upload a new avatar for example. The file is uploaded with the `private` canned ACL which gets rejected by Backblaze since the bucket is public.

OVERLORD commented 2026-02-05 01:53:20 +03:00

Author

Owner

Copy Link

@ssddanbrown commented on GitHub (Nov 27, 2022):

@Akarys42 Ah, I see.

To be honest I'm not eager on complicating things with additional options/logic, even if relatively minor, to solve a relatively limited case suited to appease the logic of a single external provider. Especially so with options that could result in over exposure of stored files without careful considerations or extra checks within the system.

It might be possible to work around this via a config tweak using the logical theme system to alter the storage config defaults. I've not tested this connected to an s3 system, but the following functions.php may work for this:

<?php

use BookStack\Facades\Theme;
use BookStack\Theming\ThemeEvents;

Theme::listen(ThemeEvents::APP_BOOT, function() {
    config()->set('filesystems.disks.s3.visibility', 'public');
});

@ssddanbrown commented on GitHub (Nov 27, 2022): @Akarys42 Ah, I see. To be honest I'm not eager on complicating things with additional options/logic, even if relatively minor, to solve a relatively limited case suited to appease the logic of a single external provider. Especially so with options that could result in over exposure of stored files without careful considerations or extra checks within the system. It might be possible to work around this via a config tweak using the [logical theme system](https://github.com/BookStackApp/BookStack/blob/development/dev/docs/logical-theme-system.md) to alter the storage config defaults. I've not tested this connected to an s3 system, but the following `functions.php` may work for this: ```php <?php use BookStack\Facades\Theme; use BookStack\Theming\ThemeEvents; Theme::listen(ThemeEvents::APP_BOOT, function() { config()->set('filesystems.disks.s3.visibility', 'public'); }); ```

OVERLORD commented 2026-02-05 01:53:21 +03:00

Author

Owner

Copy Link

@Akarys42 commented on GitHub (Nov 27, 2022):

Alright, even if I'm not a fan of that solution, that works. Thanks for your help.

@Akarys42 commented on GitHub (Nov 27, 2022): Alright, even if I'm not a fan of that solution, that works. Thanks for your help.

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

development

further_theme_development

l10n_development

release

llm_only

vectors

v25-11

docker_env

drawio_rendering

user_permissions

ldap_host_failover

svg_image

prosemirror

captcha_example

fix/video-export

v25.12.3

v25.12.2

v25.12.1

v25.12

v25.11.6

v25.11.5

v25.11.4

v24.11.4

v25.11.3

v25.11.2

v25.11.1

v25.11

v25.07.3

v25.07.2

v25.07.1

v25.07

v25.05.2

v25.05.1

v25.05

v25.02.5

v25.02.4

v25.02.3

v25.02.2

v25.02.1

v25.02

v24.12.1

v24.12

v24.10.3

v24.10.2

v24.10.1

v24.10

v24.05.4

v24.05.3

v24.05.2

v24.05.1

v24.05

v24.02.3

v24.02.2

v24.02.1

v24.02

v23.12.3

v23.12.2

v23.12.1

v23.12

v23.10.4

v23.10.3

v23.10.2

v23.10.1

v23.10

v23.08.3

v23.08.2

v23.08.1

v23.08

v23.06.2

v23.06.1

v23.06

v23.05.2

v23.05.1

v23.05

v23.02.3

v23.02.2

v23.02.1

v23.02

v23.01.1

v23.01

v22.11.1

v22.11

v22.10.2

v22.10.1

v22.10

v22.09.1

v22.09

v22.07.3

v22.07.2

v22.07.1

v22.07

v22.06.2

v22.06.1

v22.06

v22.04.2

v22.04.1

v22.04

v22.03.1

v22.03

v22.02.3

v22.02.2

v22.02.1

v22.02

v21.12.5

v21.12.4

v21.12.3

v21.12.2

v21.12.1

v21.12

v21.11.3

v21.11.2

v21.11.1

v21.11

v21.10.3

v21.10.2

v21.10.1

v21.10

v21.08.6

v21.08.5

v21.08.4

v21.08.3

v21.08.2

v21.08.1

v21.08

v21.05.4

v21.05.3

v21.05.2

v21.05.1

v21.05

v21.04.6

v21.04.5

v21.04.4

v21.04.3

v21.04.2

v21.04.1

v21.04

v0.31.8

v0.31.7

v0.31.6

v0.31.5

v0.31.4

v0.31.3

v0.31.2

v0.31.1

v0.31.0

v0.30.7

v0.30.6

v0.30.5

v0.30.4

v0.30.3

v0.30.2

v0.30.1

v0.30.0

v0.29.3

v0.29.2

v0.29.1

v0.29.0

v0.28.3

v0.28.2

v0.28.1

v0.28.0

v0.27.5

v0.27.4

v0.27.3

v0.27.2

v0.27.1

v0.27

v0.26.4

v0.26.3

v0.26.2

v0.26.1

v0.26.0

v0.25.5

v0.25.4

v0.25.3

v0.25.2

v0.25.1

v0.25.0

v0.24.3

v0.24.2

v0.24.1

v0.24.0

v0.23.2

v0.23.1

v0.23.0

v0.22.0

v0.21.0

v0.20.3

v0.20.2

v0.20.1

v0.20.0

v0.19.0

v0.18.5

v0.18.4

v0.18.3

v0.18.2

v0.18.1

v0.18.0

v0.17.4

v0.17.3

v0.17.2

v0.17.1

v0.17.0

v0.16.3

v0.16.2

v0.16.1

v0.16.0

v0.15.3

v0.15.2

v0.15.1

v0.15.0

v0.14.3

v0.14.2

v0.14.1

v0.14.0

v0.13.1

v0.13.0

v0.12.2

v0.12.1

v0.12.0

v0.11.2

v0.11.1

v0.11.0

v0.10.0

v0.9.3

v0.9.2

v0.9.1

v0.9.0

v0.8.2

v0.8.1

v0.8.0

v0.7.6

v0.7.5

v0.7.4

v0.7.3

0.7.2

v.0.7.1

v0.7.0

v0.6.3

v0.6.2

v0.6.1

v0.6.0

v0.5.0

Labels

Clear labels

🎨 Design

📖 Docs Update

🐛 Bug

🐛 Bug

:cat2:🐈 Possible duplicate

💿 Database

☕ Open to discussion

💻 Front-End

🐕 Support

🚪 Authentication

🌍 Translations

🔌 API Task

🏭 Back-End

⛲ Upstream

🔨 Feature Request

🛠️ Enhancement

🛠️ Enhancement

🛠️ Enhancement

❤️ Happy feedback

🔒 Security

🔍 Pending Validation

💆 UX

📝 WYSIWYG Editor

🌔 Out of scope

🔩 API Request

:octocat: Admin/Meta

🖌️ View Customization

❓ Question

🚀 Priority

🛡️ Blocked

🚚 Export System

♿ A11y

🔧 Maintenance

> Markdown Editor

pull-request

Mirrored from GitHub Pull Request

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

OVERLORD

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/BookStack#1789