[bug]: On hosted Plane, uploaded files go to public s3 bucket

[alext-extracellular]

Is there an existing issue for this?

• I have searched the existing issues

Current behavior

When I upload a file using the hosted Plane.so app, the file is accessible at the same url for any unauthenticated browser.

Similar to #4181, but this is for the cloud hosted version. This is not desirable behaviour at all. Many people will put sensitive design documents in their issues, I'm sure.

Steps to reproduce

1. Log in to hosted plane.so
2. Open an issue
3. upload any file
4. copy url and open in unauthenticated browser
5. File opens

Environment

Production

Browser

Google Chrome

Variant

Cloud

Version

latest cloud

[vihar]

@alext-extracellular, this is a known issue, and our team is working on it with high priority. Since the migration is a bit complicated, we are ensuring data safety. We’ll have an update on this in a couple of days and plan to fix it by the next release.

[alext-extracellular]

@vihar Thank you for your assurances. If this issue is not necessary, feel free to remove it.
Best of luck

[vihar]

Thanks, @alext-extracellular, we’ll keep this issue open and close it once the feature is shipped on Plane Cloud.

[akumar-99]

Do we have any updates or ETA on this? 🤔

[JonnyBDev]

@vihar I know the team is working hard on this as you've set this to high priority. Are there any new news available for us? Last comment is around three months old. Thanks!

[pushya22]

@JonnyBDev this feature will be shipped before week ending 20th Oct 2024

[akumar-99]

@JonnyBDev this feature will be shipped before week ending 20th Oct 2024

It would also be really helpful to have a migration document since, because of this blocker, we currently host the data locally on the machine where the plane container is running. After this, many people will be migrating from local to S3 and want to migrate the existing data, too. I would be happy to contribute and help prepare this page.