Services Plugins FAQs

Urgent Issue with Videos Uploaded Using AWS File Uploader Plugin

Plugins
#1

Hello Zeroqode Team,

I’m reaching out regarding a critical issue I’m experiencing with the AWS File Uploader Plugin (version 1.183.0) on my live website. Here’s a summary of the problem:

  1. Issue Description:
  • Older videos uploaded via the plugin are no longer playing.
  • When I inspect these files in my AWS S3 bucket, they appear to have been encrypted using SSE-C (Server-Side Encryption with Customer-Provided Keys). This prevents me from viewing the additional checksums or accessing metadata through the S3 console without providing the encryption keys.
  • In contrast, newer videos uploaded via the same plugin are working fine and appear to be encrypted with SSE-S3.
  1. No Changes on My End:
  • I have not made any changes to how I use the plugin.
  • The older videos were working previously, but this issue arose recently.
  1. Troubleshooting Steps Taken:
  • I attempted to update the plugin to the latest version (1.198.0), but this did not resolve the issue. I reverted to version 1.183.0, which I was previously using.
  • Despite this, the older videos remain inaccessible, while new uploads continue to work fine.
  1. Request for Clarification:
  • Could the plugin have been updated to inadvertently upload files with custom encryption settings (e.g., SSE-C or SSE-KMS) instead of SSE-S3?
  • If so, when was this change implemented, and how can we address it to ensure consistent encryption and access for all files?
  1. Urgency:
  • This is an urgent matter as our platform serves over 500 users, and many of them have uploaded videos that are now inaccessible due to this issue. We cannot ask our users to re-upload their files, and we need a resolution as soon as possible.

Please let me know if this issue is related to any changes made to the plugin or if there are steps we can take to resolve this on our end.

Thank you for your support, and I look forward to your prompt response.

Best regards,
George

#2

Hi @gkariuki,

Thanks a lot for your message and for using our plugin!

We understand your concern regarding the recent challenges with accessing your files in your AWS S3 account due to SSE-C encryption. While we cannot confirm the exact cause of this issue, we want to assure you that our plugin does not have the capabilities to alter file encryption settings.

It’s unclear why this change occurred, but to mitigate the impact and enhance the overall security of your environment, we strongly recommend taking the following steps:

  1. Create a New IAM User with Restricted Access:
  • Set up a new IAM user with permissions limited to GetObject and PutObject operations for S3.
  • This ensures controlled and secure access to your S3 resources.
  1. Rotate Access Keys:
  • Delete any existing access keys and generate new ones for this IAM user to maintain secure and proper access management.
  1. Update Plugins and Tools:
  • Upgrade to the latest version of the plugin, and implement the Beta Uploaders along with only server side action, to ensure compatibility and enhanced security measures.
  1. Audit and Clean Up AWS Environment:
  • Review and delete any unused or unnecessary IAM users, policies, and clusters to minimize potential vulnerabilities.
  1. Enable Multi-Factor Authentication (MFA):
  • Activate MFA for the root user and all IAM users with access to your AWS platform. This adds a critical extra layer of protection for your account.
  1. Avoid Using the Root User for Daily Operations:
  • Do not create or use access keys for the root user. Limit the root account’s usage to essential administrative tasks only.

After you managed to do these steps and you have Bucket Versioning feature enabled on your Bucket, please roll back the files before the encryption changed.

We recommend implementing these measures as soon as possible to secure your account, bucket and prevent any further disruptions.

Thank you for your understanding and cooperation!

Best regards :sunflower:

Browse all Zeroqode Plugins for Bubble Banner_Last3

1 Like
#3

Thank you for your detailed response and recommendations. I appreciate your support and will be implementing the suggested measures, including upgrading to the latest beta version of the plugin and enhancing security practices.

2 Likes
#4

Hi @gkariuki,

Glad I could be of assistance! It was a pleasure helping you out :pray:

Since the Beta features require a different setup compared to regular uploaders in the plugin, I recommend referring to the documentation for them. It provides detailed instructions on how to set them up. If you encounter any difficulties, feel free to reach out to me here on the forum or at support@zeroqode.com.

If you’re enjoying our plugins, and have some spare time, we’d love for you to rate them. Simply go to the Plugins tab in the Bubble editor, search for the plugin by name, and award it the stars you think it deserves!

Wishing you the best of luck :hugs:

Best regards :hibiscus:

Browse all Zeroqode Plugins for Bubble Banner_Last3

1 Like