DEV Community: El Morjani Mohamed The latest articles on DEV Community by El Morjani Mohamed (@elmorjanimohamed). https://dev.to/elmorjanimohamed https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F1480160%2F7e576696-7029-49dd-a923-db8ff243aaa7.png DEV Community: El Morjani Mohamed https://dev.to/elmorjanimohamed en How to Apply S3 Bucket Policies Using AWS CLI El Morjani Mohamed Tue, 01 Oct 2024 10:24:16 +0000 https://dev.to/elmorjanimohamed/how-to-apply-s3-bucket-policies-using-aws-cli-1l3e https://dev.to/elmorjanimohamed/how-to-apply-s3-bucket-policies-using-aws-cli-1l3e <p>Managing access control for your Amazon S3 buckets is essential for maintaining security in your AWS environment. In this article, I'll guide you through applying two different S3 bucket policies using the AWS CLI. One policy will allow access from a specific IP address, and the other will restrict access to specific objects (like images) from a designated domain.</p> <h2> Step 1: Create and Apply the <code>policy.json</code> File </h2> <p>The first policy we'll create allows access to your S3 bucket only from a specific IP address. Below is an example of a policy you can use.</p> <h3> <code>policy.json</code> </h3> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"Version"</span><span class="p">:</span><span class="w"> </span><span class="s2">"2012-10-17"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Id"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Allow specific IP"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Statement"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"Sid"</span><span class="p">:</span><span class="w"> </span><span class="s2">"IPAllow"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Effect"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Allow"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Principal"</span><span class="p">:</span><span class="w"> </span><span class="s2">"*"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Action"</span><span class="p">:</span><span class="w"> </span><span class="s2">"s3:*"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Resource"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="s2">"arn:aws:s3:::devops22-cli-bucket/*"</span><span class="w"> </span><span class="p">],</span><span class="w"> </span><span class="nl">"Condition"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"IpAddress"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"aws:SourceIp"</span><span class="p">:</span><span class="w"> </span><span class="s2">"102.51.8.73"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">]</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p>This policy grants permission to all S3 actions (<code>"s3:*"</code>) on the <code>devops22-cli-bucket</code> for the IP address <code>102.51.8.73</code>.</p> <h3> Apply the <code>policy.json</code> Using AWS CLI </h3> <p>To apply this policy to your S3 bucket, execute the following command in your terminal:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>aws s3api put-bucket-policy <span class="nt">--bucket</span> devops22-cli-bucket <span class="nt">--policy</span> file://policy.json </code></pre> </div> <p>This command applies the policy defined in <code>policy.json</code> to the <code>devops22-cli-bucket</code>.</p> <h2> Step 2: Create and Apply the <code>domain_policy.json</code> File </h2> <p>Next, let's create a policy that limits access to <code>.jpg</code> images in the S3 bucket, allowing requests only from a specific domain. This is particularly useful if you want to limit access to certain resources based on the referring domain.</p> <h3> <code>domain_policy.json</code> </h3> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"Version"</span><span class="p">:</span><span class="w"> </span><span class="s2">"2012-10-17"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Id"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Allow cloudntaivebasecamp.com to access the images"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Statement"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"Sid"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Allow only GET requests originating from specific domain"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Effect"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Allow"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Principal"</span><span class="p">:</span><span class="w"> </span><span class="s2">"*"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Action"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="s2">"s3:GetObject"</span><span class="p">],</span><span class="w"> </span><span class="nl">"Resource"</span><span class="p">:</span><span class="w"> </span><span class="s2">"arn:aws:s3:::devops22-cli-bucket/*.jpg"</span><span class="p">,</span><span class="w"> </span><span class="nl">"Condition"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"StringLike"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"aws:Referer"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="s2">"https://example.com/*"</span><span class="p">]</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">]</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p>This policy allows <code>GET</code> requests for <code>.jpg</code> files within the <code>devops22-cli-bucket</code> only from the domain <code>example.com</code>.</p> <h3> Apply the <code>domain_policy.json</code> Using AWS CLI </h3> <p>To apply this domain-based policy, use the following command:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>aws s3api put-bucket-policy <span class="nt">--bucket</span> devops22-cli-bucket <span class="nt">--policy</span> file://domain_policy.json </code></pre> </div> <h2> Conclusion </h2> <p>By using the AWS CLI, you can easily apply bucket policies that control access to your S3 resources. In this article, we covered two examples:</p> <ol> <li>A policy allowing access from a specific IP address.</li> <li>A policy restricting access to certain resources from a specific domain.</li> </ol> <p>These are just two examples of how you can fine-tune your access control policies using S3's flexible policy system. Feel free to adapt these examples to meet the security requirements of your own environment.</p> <p>Happy coding! ๐Ÿš€</p> devops aws cli ๐Ÿš€ Mastering AWS S3 with the CLI: A Simple Guide to Creating & Managing Buckets ๐Ÿ’ป El Morjani Mohamed Sun, 29 Sep 2024 20:49:14 +0000 https://dev.to/elmorjanimohamed/mastering-aws-s3-with-the-cli-a-simple-guide-to-creating-managing-buckets-42k https://dev.to/elmorjanimohamed/mastering-aws-s3-with-the-cli-a-simple-guide-to-creating-managing-buckets-42k <p>As developers, we often find ourselves managing cloud storage. AWS S3 is a popular choice due to its flexibility, scalability, and security. Here's a quick breakdown of how to create, configure, and manage an S3 bucket using AWS CLI! ๐Ÿ‘‡</p> <h3> ๐Ÿ› ๏ธ Steps to Create and Manage a Bucket: </h3> <ol> <li> <strong>Create a new S3 bucket</strong> in your desired region: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> aws s3api create-bucket <span class="nt">--bucket</span> devops22-cli-bucket <span class="nt">--region</span> eu-north-1 <span class="nt">--create-bucket-configuration</span> <span class="nv">LocationConstraint</span><span class="o">=</span>eu-north-1 </code></pre> </div> <ol> <li> <strong>List your buckets</strong> to ensure it's created successfully: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> aws s3 <span class="nb">ls</span> </code></pre> </div> <ol> <li> <strong>Secure your bucket</strong> by blocking all public access: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> aws s3api put-public-access-block <span class="nt">--bucket</span> devops22-cli-bucket <span class="nt">--public-access-block-configuration</span> <span class="s2">"BlockPublicAcls=true,IgnorePublicAcls=true,BlockPublicPolicy=true,RestrictPublicBuckets=true"</span> </code></pre> </div> <ol> <li> <strong>Upload files</strong> into your S3 bucket (like images or documents): </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> aws s3api put-object <span class="nt">--bucket</span> devops22-cli-bucket <span class="nt">--content-type</span> image/jpeg <span class="nt">--key</span> s3Devops22.jpg <span class="nt">--body</span> /path/to/your/image.jpg </code></pre> </div> <ol> <li> <strong>Manage permissions</strong> to control public or private access to your files. For instance, making an object publicly readable: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> aws s3api put-object-acl <span class="nt">--bucket</span> devops22-cli-bucket <span class="nt">--key</span> s3Devops22.jpg <span class="nt">--acl</span> public-read </code></pre> </div> <ol> <li> <strong>Delete files or buckets</strong> when no longer needed: </li> </ol> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> aws s3api delete-object <span class="nt">--bucket</span> devops22-cli-bucket <span class="nt">--key</span> s3Devops22.jpg aws s3api delete-bucket <span class="nt">--bucket</span> devops22-cli-bucket <span class="nt">--region</span> eu-north-1 </code></pre> </div> <h3> ๐Ÿ’ก Why use AWS CLI for S3? </h3> <p>The AWS CLI provides a fast, scriptable interface for managing your resources efficientlyโ€”whether you're creating, securing, or optimizing your buckets. It's ideal for developers who want control and automation in their cloud workflows.</p> <p>Letโ€™s keep sharing tips and improving our DevOps skills! ๐Ÿ”ฅ </p> aws cloudcomputing devops s3bucket ๐—Ÿ๐—ฎ๐—ฟ๐—ฎ๐˜ƒ๐—ฒ๐—น ๐—ง๐—ถ๐—ฝ๐Ÿ’ก: ๐—š๐—ฒ๐—ป๐—ฒ๐—ฟ๐—ฎ๐˜๐—ฒ ๐—™๐—ฎ๐—ธ๐—ฒ ๐—จ๐˜€๐—ฒ๐—ฟ ๐—”๐—ด๐—ฒ๐—ป๐˜๐˜€ El Morjani Mohamed Wed, 24 Jul 2024 08:01:03 +0000 https://dev.to/elmorjanimohamed/-4bid https://dev.to/elmorjanimohamed/-4bid <p>Did you know you can generate fake user agents for your tests using Laravel? Since Laravel leverages FakerPHP under the hood, this feature is both powerful and easy to implement. ๐Ÿš€</p> <p>In this snippet, we're using FakerPHP to generate various fake user agents for different browsers. This can be particularly useful when writing tests that need to simulate requests from different browsers and devices.</p> <p>By incorporating fake user agents into your testing strategy, you can simulate diverse browsing environments and improve the robustness of your applications.</p> <p>Happy coding! ๐Ÿ’ป<br> <a href="https://media.dev.to/cdn-cgi/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fci7u13yt9ihhq4jmheba.png" class="article-body-image-wrapper"><img src="https://media.dev.to/cdn-cgi/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fci7u13yt9ihhq4jmheba.png" alt="Image description" width="800" height="450"></a></p> laravel php webdev ๐Ÿš€ Laravel Tip๐Ÿ’ก: Extract Validated Input Elegantly El Morjani Mohamed Sun, 21 Jul 2024 18:26:54 +0000 https://dev.to/elmorjanimohamed/laravel-tip-extract-validated-input-elegantly-434g https://dev.to/elmorjanimohamed/laravel-tip-extract-validated-input-elegantly-434g <p>As developers, we often need to extract only a few items from a validated request. Instead of manually unsetting or filtering, Laravel provides a clean and efficient way to do this using the safe() method. Hereโ€™s how:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>// Extract only specific fields $validated = $request-&gt;safe()-&gt;only(['name', 'email']); // Extract all fields except specified ones $validated = $request-&gt;safe()-&gt;except(['name', 'email']); // Extract all validated input $validated = $request-&gt;safe()-&gt;all(); </code></pre> </div> <p>Using safe() makes your code cleaner and ensures you're only working with validated data, enhancing both security and code clarity.</p> laravel php webdev development Laravel Tip๐Ÿ’ก: Extract Validated Input Elegantly El Morjani Mohamed Sun, 21 Jul 2024 18:17:53 +0000 https://dev.to/elmorjanimohamed/laravel-tip-extract-validated-input-elegantly-5631 https://dev.to/elmorjanimohamed/laravel-tip-extract-validated-input-elegantly-5631 <p>We often redirect our users to specific routes using the "redirect()" method. Did you know there is a shorter and more expressive method called "to_route"? ๐Ÿš€<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>&lt;?php // ๐Ÿš€ Instead of this return redirect()-&gt;route('profile'); // โœจ You can do this return to_route('profile'); ?&gt; </code></pre> </div> <p>Both snippets achieve the same result, but to_route makes your code cleaner and more readable. Small changes can have a big impact! ๐Ÿ˜Š</p> laravel php webdev development Revamp Your GitHub: Elevate Your README! El Morjani Mohamed Thu, 09 May 2024 10:46:23 +0000 https://dev.to/elmorjanimohamed/revamp-your-github-elevate-your-readme-11f4 https://dev.to/elmorjanimohamed/revamp-your-github-elevate-your-readme-11f4 <p><a href="https://media.dev.to/cdn-cgi/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fd1oj461wrymncce71m3t.jpeg" class="article-body-image-wrapper"><img src="https://media.dev.to/cdn-cgi/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fd1oj461wrymncce71m3t.jpeg" alt="Image description" width="800" height="450"></a></p> <p>Greetings everyone,</p> <p>I hope this message finds you well. Today, I'd like to delve into the realm of GitHub. As I embark on my journey to further my studies as a developer, I recognize the significance of maintaining an updated and polished GitHub profile.</p> <p>While I created my GitHub account a year ago, I admit that I initially underestimated the importance of maintaining it. However, this year signifies a pivotal moment as I dedicate myself to consistently updating it with my ongoing projects and endeavors.</p> <p>In my efforts to revamp my profile, I've taken the initiative to refine my bio, update my <a href="https://github.com/ElmorjaniMohamed">README</a>, and ensure that my projects are up-to-date. My aim is for my GitHub profile to serve as a true reflection of my identity and aspirations.</p> <p>As I undergo these changes, I find myself pondering the question: "What constitutes best practices on GitHub? What attributes are sought after in the market?" This contemplation has prompted me to reach out to you all for insights. I invite you to share your tips and recommendations in the comments below.</p> <p>Furthermore, if you're inclined, I would greatly appreciate any feedback on how <a href="https://github.com/ElmorjaniMohamed">I can enhance my profile</a>. Please feel free to drop your GitHub profiles in the comments so that we can all engage, inspire, and connect.</p> <p>Thank you for your time and contributions.</p> <p>Warm regards, Mohamed EL Morjani</p> github networking socialmedia git