WinSCP can not access AWS GovCloud S3 Bucket

Advertisement

coryk
Joined:
Posts:
5

WinSCP can not access AWS GovCloud S3 Bucket

Hello,

WinSCP (including v5.14 beta) does not work with AWS GovCloud S3 access.
When you specify the Host-Name in your Login as s3-us-gov-west-1.amazonaws.com
it gets defaulted to "us-east-1" which is hard coded in the libs3.h source file.

Further below is a snippet of the WinSCP runtime log to show the bug:

[..]
. 2018-10-16 13:04:03.975 Session name: MyAccessKeyId@s3-us-gov-west-1.amazonaws.com (Site)
. 2018-10-16 13:04:03.975 Host name: s3-us-gov-west-1.amazonaws.com (Port: 443)
. 2018-10-16 13:04:03.975 User name: MyAccessKeyId (Password: MySecretAccessKey, Key file: No, Passphrase: No)
. 2018-10-16 13:04:03.975 Transfer Protocol: S3
. 2018-10-16 13:04:03.975 Proxy: None
. 2018-10-16 13:04:03.975 HTTPS: Yes
. 2018-10-16 13:04:03.975 S3: Default region: us-east-1
. 2018-10-16 13:04:03.975 TLS/SSL versions: TLSv1.0-TLSv1.2
. 2018-10-16 13:04:03.975 Local directory: default, Remote directory: home, Update: Yes, Cache: Yes
. 2018-10-16 13:04:03.975 Cache directory changes: Yes, Permanent: Yes
. 2018-10-16 13:04:03.975 Recycle bin: Delete to: No, Overwritten to: No, Bin path:
[..]

Please fix this issue, as WinSCP is currently NOT GovCloud S3 friendly :-(

Cheers Cory

Reply with quote

Advertisement

martin
Site Admin
martin avatar
Joined:
Posts:
40,476
Location:
Prague, Czechia

Re: WinSCP can not access AWS GovCloud S3 Bucket

So what do you need? Is there a way to detect the correct region to use? Or do you need WinSCP to allow configuring the region manually?

Reply with quote

Guest

Re: WinSCP can not access AWS GovCloud S3 Bucket

martin wrote:

So what do you need? Is there a way to detect the correct region to use? Or do you need WinSCP to allow configuring the region manually?

Allow detection for Commercial or GovCloud from the WinSCP Site configuration > Host-name.

Possible values are:

Commercial: s3.amazonaws.com
GovCloud: s3-us-gov-west-1.amazonaws.com

Logic:

If there is a "gov" in the Hostname then
Region = us-gov-west-1
Else
Region = us-east-1

Above should work

Reply with quote

coryk
Joined:
Posts:
5

Re: WinSCP can not access AWS GovCloud S3 Bucket

Anonymous wrote:

martin wrote:

So what do you need? Is there a way to detect the correct region to use? Or do you need WinSCP to allow configuring the region manually?

Allow detection for Commercial or GovCloud from the WinSCP Site configuration > Host-name.

Possible values are:

Commercial: s3.amazonaws.com
GovCloud: s3-us-gov-west-1.amazonaws.com

Logic:

If there is a "gov" in the Hostname then
Region = us-gov-west-1
Else
Region = us-east-1

Above should work

Totally agree with above, no need to manually put in the region in WinSCP.

Reply with quote

Advertisement

martin
Site Admin
martin avatar

Re: WinSCP can not access AWS GovCloud S3 Bucket

Can I see a log file please first? I want to see why the autodetection of region does not work.

Reply with quote

coryk
Joined:
Posts:
5

Re: WinSCP can not access AWS GovCloud S3 Bucket

martin wrote:

Can I see a log file please first? I want to see why the autodetection of region does not work.

Please refer to attached file: govcloud_bug@s3-us-gov-west-1.amazonaws.com.log
  • govcloud_bug@s3-us-gov-west-1.amazonaws.com.log (10.91 KB, Private file)
Description: WinSCP log file: govcloud_bug@s3-us-gov-west-1.amazonaws.com.log

Reply with quote

coryk
Joined:
Posts:
5

Re: WinSCP can not access AWS GovCloud S3 Bucket

martin wrote:

This issue has been added to the tracker:
https://winscp.net/tracker/1695

I'm sending you an email with a development version of WinSCP to the address you have used to register on this forum.

We tested the WinSCP development version in GovCloud and it worked guys! Great fix!

Can't wait to get the official GA version out soon.

Cheers Cory

Reply with quote

Advertisement

martin
Site Admin
martin avatar

Re: WinSCP can not access AWS GovCloud S3 Bucket

Thanks for your feedback. We are releasing 5.14.1 beta with the fix right now.

Reply with quote

Advertisement

You can post new topics in this forum