Skip to content
This repository has been archived by the owner on Aug 4, 2022. It is now read-only.

Latest commit

 

History

History
85 lines (51 loc) · 2.65 KB

README.md

File metadata and controls

85 lines (51 loc) · 2.65 KB
Raw

Amazon Web Service (AWS) Setup Guide for Signal

Currently, Signal use AWS for attachment and CDS queue. However you can skip this step if you don't want to use AWS, I wrote another guide on replacing S3 & CDN with Minio. But if you need AWS here you go.

IAM for Access Key & Secret

  1. Login to AWS Console and click on your name, select on My Security Credentials.

  2. Expand the tab Access keys (access key ID and secret access key).

  3. Click on Create New Access Key.

  4. Click on Show Access Key to show your Access Key & Secret.

  5. Take note of it and keep it safe. You will need it for your Signal Server config.yml

S3 for Attachments & Profile Picture

  1. Login to AWS Console and search for S3.

  2. Click on Create Bucket.

  3. Name your Bucket name and select your Region, then select Next.

  4. Scroll down to Block Public Access Setting for bucket remove the check on Block all public access and check on I acknowledge that the current settings may result in this bucket and the objects within becoming public.

  5. Scroll down and click Create Bucket

  6. Open your bucket by clicking on the name.

  7. Go to Permissions tab and scroll down to Bucket policy, fill with this (change your-bucket-name to your bucket name).

{
    "Version": "2008-10-17",
    "Statement": [
        {
            "Sid": "AllowPublicRead",
            "Effect": "Allow",
            "Principal": {
                "AWS": "*"
            },
            "Action": "s3:GetObject",
            "Resource": "arn:aws:s3:::your-bucket-name/*"
        }
    ]
}

  1. Scroll down to Access control list (ACL) and click on Edit.

  2. Check on all List, Read, and Write and click `Save changes.

  3. Go to Access Points tab and click Create access point.

  4. Give Access point name and select Internet on Network access type, remove the check on Block all public access.

  5. Scroll down and click Create access point

Cloudfront CDN for Attachments & Profile Picture

  1. Login to AWS Console and search for CloudFront.

  2. Click on Create Distribution.

  3. Under Web click Get Started.

  4. On Origin Domain Name select your Bucket.

  5. On Viewer Protocol Policy select Redirect HTTP to HTTPS.

  6. On Allowed HTTP Methods select GET, HEAD, OPTIONS, PUT, POST, PATCH, DELETE.

  7. Finish by selecting on Create Distribution.

SQS for CDS Queue

  1. Login to AWS Console and search for SQS.

  2. Click on Create new queue.

  3. Give a name in Queue Name with format name.fifo.

  4. Select FIFO Queue, then select Quick Create Queue.

  5. Select your queue and find the URL, you will need it for the Signal Server config and CDS config.