Payload Cloud Storage Plugin
This repository contains the officially supported Payload Cloud Storage plugin. It extends Payload to allow you to store all uploaded media in third-party permanent storage.
Requirements
- Payload version
1.0.19
or higher is required
Usage
Install this plugin within your Payload as follows:
import { buildConfig } from 'payload/config';
import path from 'path';
import { cloudStorage } from '@payloadcms/plugin-cloud-storage';
export default buildConfig({
plugins: [
cloudStorage({
collections: {
'my-collection-slug': {
adapter: theAdapterToUse, // see docs for the adapter you want to use
},
},
}),
],
// The rest of your config goes here
});
Features
Adapter-based Implementation
This plugin supports the following adapters:
However, you can create your own adapter for any third-party service you would like to use.
Plugin options
This plugin is configurable to work across many different Payload collections. A *
denotes that the property is required.
Option | Type | Description |
---|---|---|
collections * |
Record<string, CollectionOptions> | Object with keys set to the slug of collections you want to enable the plugin for, and values set to collection-specific options. |
Collection-specific options:
Option | Type | Description |
---|---|---|
adapter * |
Adapter | Pass in the adapter that you'd like to use for this collection. You can also set this field to null for local development if you'd like to bypass cloud storage in certain scenarios and use local storage. |
disableLocalStorage |
boolean |
Choose to disable local storage on this collection. Defaults to true . |
disablePayloadAccessControl |
true |
Set to true to disable Payload's access control. More
|
prefix |
string |
Set to media/images to upload files inside media/images folder in the bucket. |
generateFileURL |
GenerateFileURL | Override the generated file URL with one that you create. |
Azure Blob Storage Adapter
To use the Azure Blob Storage adapter, you need to have @azure/storage-blob
installed in your project dependencies. To do so, run yarn add @azure/storage-blob
.
From there, create the adapter, passing in all of its required properties:
import { azureBlobStorageAdapter } from '@payloadcms/plugin-cloud-storage/azure';
const adapter = azureBlobStorageAdapter({
connectionString: process.env.AZURE_STORAGE_CONNECTION_STRING,
containerName: process.env.AZURE_STORAGE_CONTAINER_NAME,
allowContainerCreate: process.env.AZURE_STORAGE_ALLOW_CONTAINER_CREATE === 'true',
baseURL: process.env.AZURE_STORAGE_ACCOUNT_BASEURL,
})
// Now you can pass this adapter to the plugin
S3 Adapter
To use the S3 adapter, you need to have @aws-sdk/client-s3
installed in your project dependencies. To do so, run yarn add @aws-sdk/client-s3
.
From there, create the adapter, passing in all of its required properties:
import { s3Adapter } from '@payloadcms/plugin-cloud-storage/s3';
const adapter = s3Adapter({
config: {
endpoint: process.env.S3_ENDPOINT,
credentials: {
accessKeyId: process.env.S3_ACCESS_KEY_ID,
secretAccessKey: process.env.S3_SECRET_ACCESS_KEY,
}
},
bucket: process.env.S3_BUCKET,
})
// Now you can pass this adapter to the plugin
GCS Adapter
To use the GCS adapter, you need to have @google-cloud/storage
installed in your project dependencies. To do so, run yarn add @google-cloud/storage
.
From there, create the adapter, passing in all of its required properties:
import { gcsAdapter } from '@payloadcms/plugin-cloud-storage/gcs';
const adapter = gcsAdapter({
options: {
// you can choose any method for authentication, and authorization which is being provided by `@google-cloud/storage`
keyFilename: './gcs-credentials.json',
//OR
credentials: JSON.parse(process.env.GCS_CREDENTIALS) // this env variable will have stringify version of your credentials.json file
},
bucket: process.env.GCS_BUCKET,
})
// Now you can pass this adapter to the plugin
Payload Access Control
Payload ships with access control that runs even on statically served files. The same read
access control property on your upload
-enabled collections is used, and it allows you to restrict who can request your uploaded files.
To preserve this feature, by default, this plugin keeps all file URLs exactly the same. Your file URLs won't be updated to point directly to your cloud storage source, as in that case, Payload's access control will be completely bypassed and you would need public readability on your cloud-hosted files.
Instead, all uploads will still be reached from the default /collectionSlug/staticURL/filename
path. This plugin will "pass through" all files that are hosted on your third-party cloud service—with the added benefit of keeping your existing access control in place.
If this does not apply to you (your upload collection has read: () => true
or similar) you can disable this functionality by setting disablePayloadAccessControl
to true
. When this setting is in place, this plugin will update your file URLs to point directly to your cloud host.
Local development
For instructions regarding how to develop with this plugin locally, click here.
Questions
Please contact Payload with any questions about using this plugin.
Credit
This plugin was created with significant help, and code, from Alex Bechmann and Richard VanBergen. Thank you!!