Extension:AWS
 Release status: stable |
|
|---|---|
| Implementation | File repository |
| Description | Stores MediaWiki images in Amazon S3 |
| Author(s) | Edward Chernenko |
| Latest version | 0.11.0 (2020-03-26) |
| Compatibility policy | Master maintains backwards compatibility. |
| MediaWiki | 1.35 (master branch) 1.27-1.34 (REL1_34 branch) |
| PHP | 7.3.19+ (master branch) 5.6+ (REL1_34 branch) |
| Database changes | No |
| Composer | edwardspec/mediawiki-aws-s3 |
| License | GNU General Public License 2.0 or later |
| Download | GitHub: Note: |
|
|
|
AWS extension allows MediaWiki to use Amazon S3 (instead of the local directory) to store images.
Why is this neededEdit
When images are in S3:
- Amazon EC2 instance which runs MediaWiki doesn't contain any important data[1] and can be created/destroyed by Autoscaling.
- Visitors download images directly from Amazon S3[2] (which is fast), not from Amazon EC2 (where network performance depends on instance type, etc.).
AlternativesEdit
Instead of using Amazon S3 (and this extension), you can create an Amazon EFS drive and mount it to $wgUploadDirectory. It's recommended for small wikis.
InstallationEdit
For modern versions of MediaWiki (1.35+), use the following instruction:
- Download the extension:
git clone --depth 1 https://github.com/edwardspec/mediawiki-aws-s3.git AWS
- Move the AWS directory to the "extensions" directory of your MediaWiki, e.g.
/var/www/html/w/extensions(assuming MediaWiki is in/var/www/html/w). - Create the file
/var/www/html/w/composer.local.jsonwith the following contents:{ "extra": { "merge-plugin": { "include": [ "extensions/AWS/composer.json" ] } } }
- Run
composer updatefrom/var/www/html/w(to download dependencies). If you don't have Composer installed, see Composer for how to install it. - Create an S3 bucket for images, e.g.
wonderfulbali234.- Note: this name will be seen in URL of images.
- Authorize MediaWiki to access Amazon S3:
- If your EC2 instance has an IAM instance profile (recommended), copy everything from "Needed IAM permissions" (see below) to inline policy of the IAM role. See https://console.aws.amazon.com/iam/home#/roles
- If your EC2 instance doesn't have an IAM profile, obtain key/secret for AWS API. You'll need to write it in LocalSettings.php (see below).
- Modify LocalSettings.php (see below).
See https://github.com/edwardspec/mediawiki-aws-s3/blob/master/README.md for more details.
Installation for older versions of MediaWikiEdit
See Extension:AWS/Installation for 1.27-1.34. These versions may still receive security fixes (if any), but not new features.
ConfigurationEdit
Step 1: configure LocalSettings.phpEdit
wfLoadExtension( 'AWS' );
// Configure AWS credentials.
// THIS IS NOT NEEDED if your EC2 instance has an IAM instance profile.
$wgAWSCredentials = [
'key' => '<something>',
'secret' => '<something>',
'token' => false
];
$wgAWSRegion = 'us-east-1'; # Northern Virginia
// Replace <something> with the name of your S3 bucket, e.g. wonderfulbali234.
$wgAWSBucketName = "<something>";
Step 2: needed IAM permissionsEdit
Visit the IAM Management Console - https://console.aws.amazon.com/iam/home - and add "Inline policy" to the IAM role of your Webserver.
Inline policy should contain[3] the following permissions (replace <something> with the name of your S3 bucket, e.g. wonderfulbali234):
{
"Effect": "Allow",
"Action": [
"s3:*"
],
"Resource": [
"arn:aws:s3:::<something>/*"
]
},
{
"Effect": "Allow",
"Action": [
"s3:Get*",
"s3:List*"
],
"Resource": [
"arn:aws:s3:::<something>"
]
}
Bug reportsEdit
See alsoEdit
FootnotesEdit
- ↑ Assuming the database (e.g. MySQL) is also not on this server, e.g. in Amazon RDS.
- ↑ Except in private wikis. For them images are served via img_auth.php. Presigned URLs are not (yet?) supported.
- ↑ Within the Statement array, as in this example.