All Products
Search
Document Center

Object Storage Service:Upload objects to OSS from web applications

Last Updated:Feb 02, 2025

Signature-based direct upload allows you to upload files directly to Object Storage Service (OSS) buckets using signatures. Initially, the server or client retrieves a temporary access credential, after which a signature is calculated and generated according to the POST V4 signature algorithm. With this signature, the client can initiate a direct upload.

Practices of signature-based direct upload

OSS provides two solutions for signature-based direct upload.

  • Obtain signature information from the application server and upload data to OSS: The server retrieves a temporary access credential for the calculation and generation of a signature, which is then provided to the client for uploading. The temporary access credentials are stored on servers, which enhances security.

  • Securely and directly upload data from a client to OSS: The server retrieves a temporary access credential and transmits it to the client. The client then generates a signature with this temporary access credential and proceeds to upload files using this signature. This method accelerates the upload process but involves potential risks resulting from storing the temporary access credential on the client. Please proceed with caution.

Reference

For more information, see Add signatures on the server, configure upload callbacks, and directly transfer data.