Download artifact from private bucket
This endpoint returns a signed URL for downloading a file from a private bucket.
Endpoint
GET /download
Authentication
| Header | Value | Required |
|---|---|---|
Authorization | Bearer <jwt_token> | Conditional |
Note
If ENABLE_PRIVATE_APP_DOWNLOADING=false, then this request requires authentication.
Query Parameters
| Parameter | Type | Required | Description |
|---|---|---|---|
key | string | ✅ | Key for finding the object on S3 |
Example Request
curl -X GET --location 'http://localhost:9000/download?key=secondapp%2Fstable%2Flinux%2Famd64%2Fsecondapp-0.0.1.deb'
Response
When ENABLE_PRIVATE_APP_DOWNLOADING=true
You will be redirected directly to the file for download.
When ENABLE_PRIVATE_APP_DOWNLOADING=false
{
"download_url": "https://<bucket_name>.s3.amazonaws.com/secondapp/stable/linux/amd64/secondapp-0.0.1.deb?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=MdnaDEXKy9nOc4beIvNcgy%2F20250409%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20250409T153628Z&X-Amz-Expires=900&X-Amz-SignedHeaders=host&X-Amz-Signature=bb89a695151c19880c2a2de6620e49a8f532ef1b356542f4821e701c32db9382"
}
Response Fields
| Field | Type | Description |
|---|---|---|
download_url | string | Signed URL for downloading the file (only when ENABLE_PRIVATE_APP_DOWNLOADING=false) |
Notes
- The signed URL has a limited expiration time (typically 15 minutes)
- URL encoding is required for the
keyparameter - The key format typically follows:
{app_name}/{channel}/{platform}/{arch}/{filename}