- ã‚„ã‚ŠãŸã„ã“ã¨
- å‚考
- 検証環境
- Data Bucket ã«æœªèªè¨¼ãƒ¦ãƒ¼ã‚¶ãƒ¼ãŒæ›¸ãè¾¼ã‚るよã†ãªç’°å¢ƒã‚’ AWS CLI ã§ç”¨æ„ã™ã‚‹
- ã‚ã¨ã¯ HTML 㨠JavaScript ã§ãƒ•ã‚©ãƒ¼ãƒ を用æ„ã—㦠HTML Bucket ã«æ”¾ã‚Šè¾¼ã‚€
- 集計ã¨ã‹
- 以上
ã‚„ã‚ŠãŸã„ã“ã¨
- S3 ã§æ§‹æˆã•ã‚ŒãŸã‚µã‚¤ãƒˆã« HTML フォームを実装ã—ã€ã‚¢ãƒ³ã‚±ãƒ¼ãƒˆãƒšãƒ¼ã‚¸çš„ãªã‚‚ã®ã‚’æä¾›ã—ãŸã„
- 最終的ã«ã¯ S3 ã®å‰ã«ã¯ CloudFront を挟む予定
- 投稿ã®å†…容㯠S3 ã« JSON ã§ä¿å˜ã™ã‚‹
図ã«ã™ã‚‹ã¨ä»¥ä¸‹ã®ã‚ˆã†ãªæ„Ÿã˜ã€‚
å‚考
ã‚ã‚ŠãŒã¨ã†ã”ã–ã„ã¾ã™ã€‚ã»ã¼ã€ä¸Šè¨˜ãƒšãƒ¼ã‚¸ã®å†™çµŒã¨ãªã‚Šã¾ã™ã€‚
HTML フォームを JavaScript ã‹ã‚‰æ‰±ã†æ–¹æ³•ã¯ä¸Šè¨˜ã®ãƒšãƒ¼ã‚¸ãŒå‚考ã«ãªã‚Šã¾ã—ãŸã€‚有難ã†ã”ã–ã„ã¾ã™ã€‚
検証環境
OS
$ sw_vers ProductName: Mac OS X ProductVersion: 10.11.6 BuildVersion: 15G1217
AWS CLI
$ aws --version
aws-cli/1.11.19 Python/2.7.10 Darwin/15.6.0 botocore/1.4.76
Data Bucket ã«æœªèªè¨¼ãƒ¦ãƒ¼ã‚¶ãƒ¼ãŒæ›¸ãè¾¼ã‚るよã†ãªç’°å¢ƒã‚’ AWS CLI ã§ç”¨æ„ã™ã‚‹
Cognito ã‚„ IAM ç‰ã‚’色々ã¨è¨å®šã™ã‚‹å¿…è¦ãŒã‚ã‚‹ã‘ã©ã€AWS CLI ã§å…¨éƒ¨æº–å‚™ã™ã‚‹ã€‚
# # å„環境変数ã«å€¤ã‚’定義 # _PROFILE=washino-profile _REGION=ap-northeast-1 _DOMAIN_NAME=washi.inokara.tech _IDENTITY_POOL_NAME=washino_identity _S3_BUCKET_NAME=data-bucket # # identity pool ã‚’ä½œæˆ # _IDENTITY_POOL_ID=$(aws --profile ${_PROFILE} cognito-identity create-identity-pool --identity-pool-name ${_IDENTITY_POOL_NAME} --allow-unauthenticated-identities --query IdentityPoolId --output text) echo ${_IDENTITY_POOL_ID} # # S3 ãƒã‚±ãƒƒãƒˆã‚’ä½œæˆ # aws --profile ${_PROFILE} --region ${_REGION} s3 mb s3://${_S3_BUCKET_NAME} # # 作æˆã—ãŸãƒã‚±ãƒƒãƒˆã« CORS ã‚’è¨å®šï¼ˆã“れをやã£ã¨ã‹ã‚“ã¨ã„ã‹ã‚“ã°ã„) # cat << EOT >> cors.json { "CORSRules": [ { "AllowedOrigins": ["https://${_DOMAIN_NAME}"], "AllowedHeaders": ["*"], "AllowedMethods": ["PUT"] } ] } EOT aws --profile ${_PROFILE} s3api put-bucket-cors --bucket ${_S3_BUCKET_NAME} --cors-configuration file://cors.json # # ãƒã‚±ãƒƒãƒˆãƒãƒªã‚·ãƒ¼ã‚’ä½œæˆ # cat << EOT >> s3PutAllowPolicy.json { "Version": "2012-10-17", "Statement": [ { "Sid": "S3PutAllowPolicy", "Effect": "Allow", "Action": [ "s3:PutObject", "s3:PutObjectAcl" ], "Resource": "arn:aws:s3:::${_S3_BUCKET_NAME}/*" } ] } EOT _POLICY_ARN=$(aws --profile ${_PROFILE} iam create-policy --policy-name s3PutAllowPolicy --policy-document file://s3PutAllowPolicy.json --query Policy.Arn --output text) echo ${_POLICY_ARN} # # identity pool ã«ä»˜ä¸Žã™ã‚‹ IAM Role ã‚’ä½œæˆ # cat << EOT >> ${_IDENTITY_POOL_NAME}_authenticated.json { "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Principal": { "Federated": "cognito-identity.amazonaws.com" }, "Action": "sts:AssumeRoleWithWebIdentity", "Condition": { "StringEquals": { "cognito-identity.amazonaws.com:aud": "${_IDENTITY_POOL_ID}" }, "ForAnyValue:StringLike": { "cognito-identity.amazonaws.com:amr": "authenticated" } } } ] } EOT _IAM_ROLE_ARN=$(aws --profile ${_PROFILE} iam create-role --role-name cognito_${_IDENTITY_POOL_NAME}_authenticated --assume-role-policy-document file://${_IDENTITY_POOL_NAME}_authenticated.json --query Role.Arn --output text) aws --profile ${_PROFILE} iam attach-role-policy --role-name cognito_${_IDENTITY_POOL_NAME}_authenticated --policy-arn ${_POLICY_ARN} # # identity pool ã« IAM Role ã‚’é©ç”¨ã™ã‚‹ # aws --profile ${_PROFILE} cognito-identity set-identity-pool-roles --identity-pool-id ${_IDENTITY_POOL_ID} --roles authenticated=${_IAM_ROLE_ARN} # # identity pool ã«ä»˜ä¸Žã™ã‚‹ IAM Role を作æˆï¼ˆæœªèªè¨¼ãƒ¦ãƒ¼ã‚¶ãƒ¼ç”¨ï¼‰ # cat << EOT >> ${_IDENTITY_POOL_NAME}_unauthenticated.json { "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Principal": { "Federated": "cognito-identity.amazonaws.com" }, "Action": "sts:AssumeRoleWithWebIdentity", "Condition": { "StringEquals": { "cognito-identity.amazonaws.com:aud": "${_IDENTITY_POOL_ID}" }, "ForAnyValue:StringLike": { "cognito-identity.amazonaws.com:amr": "unauthenticated" } } } ] } EOT _IAM_ROLE_ARN=$(aws --profile ${_PROFILE} iam create-role --role-name cognito_${_IDENTITY_POOL_NAME}_unauthenticated --assume-role-policy-document file://${_IDENTITY_POOL_NAME}_unauthenticated.json --query Role.Arn --output text) aws --profile ${_PROFILE} iam attach-role-policy --role-name cognito_${_IDENTITY_POOL_NAME}_unauthenticated --policy-arn ${_POLICY_ARN} # # identity pool ã« IAM Role ã‚’é©ç”¨ã™ã‚‹ # aws --profile ${_PROFILE} cognito-identity set-identity-pool-roles --identity-pool-id ${_IDENTITY_POOL_ID} --roles unauthenticated=${_IAM_ROLE_ARN} # # 後片付ã‘(やらãªãã¦ã‚‚良ã„) # rm -f cors.json s3PutAllowPolicy.json ${_IDENTITY_POOL_NAME}_authenticated.json ${_IDENTITY_POOL_NAME}_unauthenticated.json
ã‚ã¨ã¯ HTML 㨠JavaScript ã§ãƒ•ã‚©ãƒ¼ãƒ を用æ„ã—㦠HTML Bucket ã«æ”¾ã‚Šè¾¼ã‚€
HTML ã¯ã“ã‚“ãªæ„Ÿã˜
<!DOCTYPE html> <html> <head> <meta charset="UTF-8"> <script src="aws-sdk.min.js"></script> <script src="demo.js"></script> <title>雑ãªã‚¢ãƒ³ã‚±ãƒ¼ãƒˆ</title> </head> <body> <form name='orenoForm'> <table> <tr> <th>ãŠåå‰</th> <td> <input name="_name" type="text" maxlength="50" value="" /> </td> </tr> <tr> <th>メールアドレス</th> <td> <input name="_mail" type="email" maxlength="50" value="" /> </td> </tr> <tr> <th>性別</th> <td> <input name="_sex" type="radio" value="ç”·"/>ç”·</input> <input name="_sex" type="radio" value="女"/>女</input> <input name="_sex" type="radio" value="未é¸æŠž" checked="checked" />未é¸æŠž</input> </td> </tr> <tr> <th>世ã®ä¸ã«ä¸æº€ã‚’</th> <td> <input name="_fuman" type="radio" value="æ„Ÿã˜ã‚‹"/>æ„Ÿã˜ã‚‹</input> <input name="_fuman" type="radio" value="æ„Ÿã˜ãªã„"/>æ„Ÿã˜ãªã„</input> <input name="_fuman" type="radio" value="未é¸æŠž" checked="checked" />未é¸æŠž</input> </td> </tr> <tr> <th>2017 年ホークスã¯</th> <td> <input name="_hawks" type="radio" value="優å‹ã™ã‚‹"/>優å‹ã™ã‚‹</input> <input name="_hawks" type="radio" value="優å‹ã—ãªã„"/>優å‹ã—ãªã„</input> <input name="_hawks" type="radio" value="未é¸æŠž" checked="checked" />未é¸æŠž</input> </td> </tr> <tr> <th>コメントをã©ã†ãž</th> <td> <TEXTAREA name="_comment" cols="40" rows="6" name="comment"></TEXTAREA> </td> </tr> </table> <input onClick="postMessage();" type="button" value="投稿"/> </form> </body> </html>
JavaScript ã¯ã“ã‚“ãªæ„Ÿã˜
// // demo.js // var $aws_region = "ap-northeast-1"; var $aws_cognito_identity_pool_id = "ap-northeast-1:xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxxxx"; // Cognito ã§ä½œæˆã—㟠identity pool id ã‚’è¨å®šã™ã‚‹ var $s3_prefix = "data/201702/"; var $s3_bucket = "xxxxxxxxxxxxxxxxxxxxxxxx"; AWS.config.region = $aws_region; AWS.config.credentials = new AWS.CognitoIdentityCredentials({IdentityPoolId: $aws_cognito_identity_pool_id}); // AWS.config.credentials.get(function(err) { // if (!err) { // console.log("Cognito Identify Id: " + AWS.config.credentials.identityId); // } // }); function postMessage() { var form = document.forms.orenoForm; var now = new Date(); var obj = {"name": form._name.value, "mail": form._mail.value, "comment": form._comment.value, "sex": form._sex.value, "fuman": form._fuman.value, "hawks": form._hawks.value, "date": now.toLocaleString()}; var s3 = new AWS.S3({params: {Bucket: $s3_bucket}}); var blob = new Blob([JSON.stringify(obj, null, 2)], {type:'text/plain'}); s3.putObject({Key: $s3_prefix + now.getTime() +".json", ContentType: "text/plain", Body: blob, ACL: "public-read"}, function(err, data){ if(data !== null){ location.href="thanks.html"; } else{ alert("Post Failed: " + err.message); } }); }
Chrome ã§è¦‹ã‚‹ã¨…
ãªã‚“ã‹ã‚¢ãƒ³ã‚±ãƒ¼ãƒˆãƒšãƒ¼ã‚¸ã£ã½ã„ã§ã™ãªã€‚
アンケートã«ç”ãˆã‚‹ã¨…
以下ã®ã‚ˆã†ã« S3 ãƒã‚±ãƒƒãƒˆã« JSON データãŒä¿å˜ã•ã‚Œã‚‹ã€‚
bash-3.2$ ls -tr *.json 1486298468151.json 1486298522074.json 1486298702117.json bash-3.2$ cat 1486298702117.json | jq . { "date": "2017/2/5 21:45:02", "hawks": "優å‹ã™ã‚‹", "fuman": "æ„Ÿã˜ãªã„", "sex": "女", "comment": "ã‚ã‚ã‚ã‚", "mail": "[email protected]", "name": "ã‚„ã¾ã ã¯ãªã“" }
集計ã¨ã‹
S3 ã® put イベントを拾ã£ã¦ Lambda ã¨çµ„ã¿åˆã‚ã›ã‚‹ä¾‹ãŒç´¹ä»‹ã•ã‚Œã¦ã„ã‚‹ã‘ã©ã€ã¨ã‚Šã‚ãˆãšã¯ Google SpreadSheet ã«çµæžœã‚’çªã£è¾¼ã‚“ã§ãŠã‘ã°è‰¯ã•ãã†ã¨ã„ã†ã“ã¨ã§ã€ä»¥ä¸‹ã®è¨˜äº‹ã®ã‚ˆã†ã« Google SpreadSheet ã«çªã£è¾¼ã‚“ã§ãŠãã“ã¨ã«ã™ã‚‹ã€‚
Elasticsearch ã¨ã‹ã«çªã£è¾¼ã‚“ã§ã‚‚é¢ç™½ãã†ã ã‘ã©ã€‚
以上
メモã§ã—ãŸã€‚
