The latest articles on DEV Community by Ehtesham Siddiqui (@ehteshamdev). https://dev.to/ehteshamdev https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F174279%2F5382722b-8f79-4fe7-92bc-b410bf81c360.jpeg https://dev.to/ehteshamdev en Ehtesham Siddiqui Mon, 14 Nov 2022 13:55:50 +0000 https://dev.to/ehteshamdev/how-to-fix-cors-error-while-uploading-files-on-cloudflare-r2-using-presigned-urls-21dm https://dev.to/ehteshamdev/how-to-fix-cors-error-while-uploading-files-on-cloudflare-r2-using-presigned-urls-21dm <p>This post was originally posted <a href="https://ehtesham.dev/blog/how-to-fix-cors-error-while-uploading-files-on-cloudflare-r2-using-presigned-urls">here</a> at my blog.</p> <p><em><a href="https://www.cloudflare.com/en-gb/products/r2/">Cloudflare R2</a> Storage allows developers to store large amounts of unstructured data without the costly egress bandwidth fees associated with typical cloud storage services.</em></p> <p>While using R2 to upload files with presigned URLs, I started getting the following CORS issue in my browser console:<br> <em>"Access to fetch at '' from origin <a href="http://localhost:3000">http://localhost:3000</a> has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource. If an opaque response serves your needs, set the request's mode to 'no-cors' to fetch the resource with CORS disabled."</em></p> <h2> Here is how I solved it using aws-sdk for js V3: </h2> <p>Create an empty node project and install aws-sdk for js v3.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>mkdir r2-cors &amp;&amp; cd r2-cors pnpm init pnpm install @aws-sdk/client-s3 @aws-sdk/s3-request-presigner touch cors.js </code></pre> </div> <p>Add <code>type: "module"</code> into your <code>package.json</code> file.</p> <p>Next, copy and paste this snippet into cors.js and replace the credentials from your Cloudflare R2 dashboard. Refer <a href="https://developers.cloudflare.com/r2/data-access/s3-api/tokens">here</a> to create the tokens.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>import { PutBucketCorsCommand, S3Client } from "@aws-sdk/client-s3"; const s3Client = new S3Client({ region: "auto", endpoint: `https://${CF-ACCOUNT-ID}.r2.cloudflarestorage.com`, //TODO: replace credentials: { accessKeyId: `${ACCESS-KEY}`, //TODO: replace secretAccessKey: `${ACCESS-SECRET}`, //TODO: replace }, }); async function main() { const response = await s3Client.send( new PutBucketCorsCommand({ Bucket: "your-bucket-name", //TODO: replace CORSConfiguration: { CORSRules: new Array({ AllowedHeaders: ["content-type"], //this is important, do not use "*" AllowedMethods: ["GET", "PUT", "HEAD"], AllowedOrigins: ["*"], ExposeHeaders: [], MaxAgeSeconds: 3000, }), }, }) ); console.dir(repsonse) } main(); </code></pre> </div> <p>Then run the script with node:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>node cors.js </code></pre> </div> <p>If everything works well, you should see the following logged in the console:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>{ '$metadata': { httpStatusCode: 200, requestId: undefined, extendedRequestId: undefined, cfId: undefined, attempts: 1, totalRetryDelay: 0 } } </code></pre> </div> <p>And that's it, your CORS issue should be resolved now.</p> <p>If you have any questions or just want to connect, follow me on <a href="https://twitter.com/ehteshamdev">Twitter</a>.</p> node cors cloudflare r2