[HN Gopher] Show HN: I built open source file sharing solution u...
___________________________________________________________________
Show HN: I built open source file sharing solution using AWS S3
I created a 100% Open source Company-wide Self-hosted File Sharing
Solution for Teams Recently, I wanted to share HD images and video
files with my graphic designer. She's exceptional at her craft but
isn't familiar with AWS S3 So, I got an idea and built this.
Github Repo: https://github.com/rohitg00/s3-file-share-for-free
Detailed Guide: https://ghumare64.medium.com/i-built-a-company-
wide-self-hos...
Author : rohitghumare
Score : 50 points
Date : 2024-12-30 12:37 UTC (10 hours ago)
(HTM) web link (s3-file-share-for-free-35n2u.kinsta.app)
(TXT) w3m dump (s3-file-share-for-free-35n2u.kinsta.app)
| szszrk wrote:
| Hey, looks interesting and practical.
|
| Any plans on making it compatible with other s3 implementation
| (other cloud vendors, local minio.io etc)?
| rohitghumare wrote:
| Yes! Will release next version which supports all cloud
| providers from S3 to Hetzner Cloud storage!!
| szszrk wrote:
| That is really neat. I had so many tiny use cases in my
| previous companies that could be solved by just a simple UI
| like this one. If you combine that with things like s3 static
| websites, it could be a beast that replaces some long-
| forgotten CMS solutions.
| rohitghumare wrote:
| Completely Agree. I would appreciate it if you could add
| your ideas as an issue here:
| https://github.com/rohitg00/s3-file-share-for-free/issues
| 7bit wrote:
| Why should I use your solution and not Next cloud, for example?
| rohitghumare wrote:
| Our S3 File Manager offers a lightweight, zero-configuration
| solution focused purely on S3 storage management, making it
| ideal for teams who need simple, cost-effective cloud storage
| without the overhead of a full collaboration suite like
| Nextcloud. While Nextcloud excels at comprehensive
| collaboration, our tool excels at simplicity and AWS
| integration. But we don't want to limit it to S3. We will try
| to include all storage by next month.
| billev2k wrote:
| I'm pretty leery of making the "access key" and "secret key" so
| public (like typing them into a web page, or setting them in
| environment variables). Of course it adds significant friction to
| set up an IAM identity for every user, and "low friction" is one
| of the key requirements here.
| ryanianian wrote:
| A "correct" implementation would give you a temporary IAM role
| or something (STS) based on a JWT or other authn mechanism.
|
| This is not that difficult if you're already invested in an
| identity ecosystem, but a right pain without something to
| bootstrap it.
|
| On the plus side, AWS creds can be made to be temporary and
| limited in scope to just the nouns/verbs required. Creating and
| vending those tokens is an exercise for the reader.
| 420official wrote:
| It really isn't that challenging to get going with JWT auth
| in AWS. Gitlab has pretty good documentation for how to use
| Gitlab ID tokens to assume roles that includes everything
| other than how to generate a JWT here:
| https://docs.gitlab.com/ee/ci/cloud_services/aws/
|
| And of course generating OIDC PKI JWTs is pretty easy and
| well documented elsewhere.
|
| The harder parts in my mind are: - Updating
| this OSS project to serve a JWK from OIDC .well-known -
| Convincing people that this method of authn is safe and that
| those keys are securely stored
| bhawks wrote:
| Magic Wormhole gives you secure file transmission for free.
|
| Give one of the implementations a try:
| https://github.com/psanford/wormhole-william
| ryanianian wrote:
| Magic wormhole is great for live, peer-to-peer transfers.
|
| But it is not great if you want to distribute a file multiple
| times, asynchronously, or with other functionality gained from
| centralized storage. This is where people typically use email,
| dropbox, or perhaps the tool from TFA.
| nijave wrote:
| I think you can seed torrents via HTTP but you'd want to add
| a layer of file encryption in case someone discovers your
| torrent
|
| Non-free Resilio Sync basically automated this
| zikduruqe wrote:
| Why not S3 presigned URLs? It's already baked into the service
| anyways.
|
| https://docs.aws.amazon.com/AmazonS3/latest/userguide/ShareO...
| jatins wrote:
| might be fine for internal company use but pasting access/secret
| key on a third party website will get you a call from
| security...or worse, won't
| lizzas wrote:
| My initial though. At least create an IAM user per file :-).
| Maybe that defeats the convenience.
|
| Cloning and installing is also an option.
| perching_aix wrote:
| I guess this is for smaller organizations with no MS365
| subscription (and thus access to SharePoint)?
| justmarc wrote:
| Does MS365 cover all potential use cases, needs and scenarios?
| perching_aix wrote:
| All in the world? I suppose I haven't tried it for recipes,
| but I guess Copilot could help with that too.
|
| As far as sharing files goes though, yes. I mean, it allows
| you to... share files, and do so in a controlled manner. Even
| edit them in-app as long as they're of a supported format.
| mickael-kerjean wrote:
| Hi! I'm the author of another open-source project in the same
| space that I've been working on for a while: Filestash [1]
|
| Were you familiar with Filestash before starting this? If so, was
| there something specific you felt was missing that inspired you
| to create your own solution? Would love to hear your thoughts.
|
| github: https://github.com/mickael-kerjean/filestash
|
| demo on s3:
| https://demo.filestash.app/login?type=s3&access_key_id=Q3AM3...
| scarface_74 wrote:
| This seems like such a horrible, insecure idea that would never
| pass muster at any company I've ever worked at
| lomkju wrote:
| Nice!
|
| Could you tell me why Google Drive didn't work for you?
|
| Google Drive seems to cheaper and has better UX than S3 - $8 for
| 2 TB (India) - Supports file versioning - 750GB bandwidth per day
| folmar wrote:
| If you do any less typical files Google Drive will balk at you
| at all times, at least for the other users who use the browser
| UI.
|
| What works bad: * folder with lots of medium size files * large
| ZIP * video bigger than a few tens of megabytes
___________________________________________________________________
(page generated 2024-12-30 23:01 UTC)