In modern cloud-native applications, file storage is a key requirement. Whether you’re building a media-rich web platform, a document archival system, or simply storing user profile pictures, object storage systems like Amazon S3 offer scalable and reliable solutions.
This blog focuses on AWS S3 integration with Spring Boot, especially when handling secure file transfers using pre-signed URLs. You’ll learn when to use signed URLs, how they differ from regular uploads, and how to implement them cleanly in your application.
Let’s break it down systematically and explore how AWS S3 integration can improve the scalability and performance of your cloud-native applications.
Amazon S3 (Simple Storage Service) is a scalable, high-durability object storage platform provided by AWS. It allows applications to store and retrieve any amount of data, at any time, from anywhere on the web. As a foundation for AWS S3 integration, S3 offers powerful features ideal for application storage needs:
▪️Unlimited storage
▪️99.999999999% (11 9’s) of durability
▪️Fine-grained access control via IAM
▪️Lifecycle policies, versioning, and encryption
S3 stores files as objects inside buckets, with each object assigned a unique key.
To build a secure and scalable setup, let’s create a Spring Boot application with AWS S3 integration.
▪️Java 17+
▪️Spring Boot 3+
▪️AWS Java SDK v1, reliable for S3 tasks
In your pom.xml, add:
<!-- Spring Boot Web -->
<dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-web</artifactId>
</dependency>
<!-- AWS SDK for S3 -->
<dependency>
<groupId>com.amazonaws</groupId>
<artifactId>aws-java-sdk-s3</artifactId>
<version>1.12.670</version>
</dependency>
<!-- Lombok (Optional) -->
<dependency>
<groupId>org.projectlombok</groupId>
<artifactId>lombok</artifactId>
<optional>true</optional>
</dependency>Use application.properties:
aws.region=ap-south-1
aws.accessKey=YOUR_ACCESS_KEY
aws.secretKey=YOUR_SECRET_KEY
aws.s3.bucket=my-app-bucket
aws.s3.expiration.minutes=10This is critical for enabling AWS S3 integration in your backend securely and programmatically.
Normally, file uploads flow like this:
Client → Backend → S3This can overload your server, especially for large files.
Pre-signed URLs allow a better approach:
Client → S3 (direct) ← signed URL from BackendThe server only signs the request and delegates the actual upload/download to the client. This improves scalability, performance, and cost-efficiency.
▪️Client requests an upload URL The client sends the desired filename and content type to your Spring Boot backend.
▪️Server generates a signed PUT URL Backend creates a pre-signed URL using AWS SDK and returns it.
▪️Client uploads directly to S3 Using Http PUT, the file is uploaded to S3 using the signed URL.
▪️(Optional) Client informs server Post-upload, the client can notify the server of a successful upload.
▪️Client requests a download URL Client sends the object key (filename or ID).
▪️Server creates signed GET URL A pre-signed URL with an expiration time is generated.
▪️Client downloads the file Client accesses the file directly from S3 without burdening your server.
This efficient workflow is a key benefit of AWS S3 integration in scalable systems.
@Service
public class S3Service {
@Value("${aws.region}") private String region;
@Value("${aws.accessKey}") private String accessKey;
@Value("${aws.secretKey}") private String secretKey;
@Value("${aws.s3.bucket}") private String bucket;
@Value("${aws.s3.expiration.minutes}") private int expirationMinutes;
private AmazonS3 s3Client;
@PostConstruct
public void init() {
BasicAWSCredentials creds = new BasicAWSCredentials(accessKey, secretKey);
this.s3Client = AmazonS3ClientBuilder.standard()
.withRegion(region)
.withCredentials(new AWSStaticCredentialsProvider(creds))
.build();
}
public String generateUploadUrl(String fileName) {
Date expiration = Date.from(Instant.now().plus(Duration.ofMinutes(expirationMinutes)));
GeneratePresignedUrlRequest request = new GeneratePresignedUrlRequest(bucket, fileName)
.withMethod(HttpMethod.PUT)
.withExpiration(expiration);
return s3Client.generatePresignedUrl(request).toString();
}
public String generateDownloadUrl(String fileName) {
Date expiration = Date.from(Instant.now().plus(Duration.ofMinutes(expirationMinutes)));
GeneratePresignedUrlRequest request = new GeneratePresignedUrlRequest(bucket, fileName)
.withMethod(HttpMethod.GET)
.withExpiration(expiration);
return s3Client.generatePresignedUrl(request).toString();
}
}| Feature | Normal File Upload | Pre-Signed URL Upload |
|---|---|---|
Upload Flow | Client → Server → S3 | Client → S3 (via URL from Server) |
Backend Load | High (server handles file stream) | Minimal (URL generation only) |
Security | Backend-authenticated | Signed URLs with expiration |
Performance | Slower for large files | Faster and direct |
Scalability | Bottleneck at server | Highly scalable |
Client Complexity | Simple | Needs PUT/GET implementation |
Cost Efficiency | More server resources | Optimized storage cost |
▪️Offloads large file handling from backend
▪️Improves performance for clients
▪️Secure and temporary access to files
▪️Ideal for mobile apps and frontend-heavy platforms
▪️Slightly more complex for frontend developers
▪️Can be abused if URL is leaked (use short expiry times)
▪️Requires careful logging and monitoring
▪️Use short-lived expiration (5–10 minutes)
▪️Don’t expose S3 bucket names publicly
▪️Consider object-level encryption if storing sensitive data
▪️Monitor access logs and usage
▪️User-uploaded profile images in mobile apps
▪️Video uploads in media platforms
▪️Document storage in enterprise CRMs
▪️IoT sensor logs directly streaming to S3
Across industries, AWS S3 integration supports seamless file handling at scale.
Pre-signed URLs with Amazon S3 allow developers to build highly efficient, scalable, and secure file handling workflows. When combined with Spring Boot, this becomes a robust solution suitable for both startups and enterprise-grade systems.
If you’re building a modern web or mobile app, embracing AWS S3 integration with pre-signed URLs is a future-ready approach.
Join Us for Your 24/7 Clinical Knowledge Partner – The AI Companions Webinar on Thursday, 17th July 2025 at 11:00 AM EDT
Register Now
We worked with Mindbowser on a design sprint, and their team did an awesome job. They really helped us shape the look and feel of our web app and gave us a clean, thoughtful design that our build team could...
The team at Mindbowser was highly professional, patient, and collaborative throughout our engagement. They struck the right balance between offering guidance and taking direction, which made the development process smooth. Although our project wasn’t related to healthcare, we clearly benefited...
Founder, Texas Ranch Security
Mindbowser played a crucial role in helping us bring everything together into a unified, cohesive product. Their commitment to industry-standard coding practices made an enormous difference, allowing developers to seamlessly transition in and out of the project without any confusion....
CEO, MarketsAI
I'm thrilled to be partnering with Mindbowser on our journey with TravelRite. The collaboration has been exceptional, and I’m truly grateful for the dedication and expertise the team has brought to the development process. Their commitment to our mission is...
Founder & CEO, TravelRite
The Mindbowser team's professionalism consistently impressed me. Their commitment to quality shone through in every aspect of the project. They truly went the extra mile, ensuring they understood our needs perfectly and were always willing to invest the time to...
CTO, New Day Therapeutics
I collaborated with Mindbowser for several years on a complex SaaS platform project. They took over a partially completed project and successfully transformed it into a fully functional and robust platform. Throughout the entire process, the quality of their work...
President, E.B. Carlson
Mindbowser and team are professional, talented and very responsive. They got us through a challenging situation with our IOT product successfully. They will be our go to dev team going forward.
Founder, Cascada
Amazing team to work with. Very responsive and very skilled in both front and backend engineering. Looking forward to our next project together.
Co-Founder, Emerge
The team is great to work with. Very professional, on task, and efficient.
Founder, PeriopMD
I can not express enough how pleased we are with the whole team. From the first call and meeting, they took our vision and ran with it. Communication was easy and everyone was flexible to our schedule. I’m excited to...
Founder, Seeke
We had very close go live timeline and Mindbowser team got us live a month before.
CEO, BuyNow WorldWide
If you want a team of great developers, I recommend them for the next project.
Founder, Teach Reach
Mindbowser built both iOS and Android apps for Mindworks, that have stood the test of time. 5 years later they still function quite beautifully. Their team always met their objectives and I'm very happy with the end result. Thank you!
Founder, Mindworks
Mindbowser has delivered a much better quality product than our previous tech vendors. Our product is stable and passed Well Architected Framework Review from AWS.
CEO, PurpleAnt
I am happy to share that we got USD 10k in cloud credits courtesy of our friends at Mindbowser. Thank you Pravin and Ayush, this means a lot to us.
CTO, Shortlist
Mindbowser is one of the reasons that our app is successful. These guys have been a great team.
Founder & CEO, MangoMirror
Kudos for all your hard work and diligence on the Telehealth platform project. You made it possible.
CEO, ThriveHealth
Mindbowser helped us build an awesome iOS app to bring balance to people’s lives.
CEO, SMILINGMIND
They were a very responsive team! Extremely easy to communicate and work with!
Founder & CEO, TotTech
We’ve had very little-to-no hiccups at all—it’s been a really pleasurable experience.
Co-Founder, TEAM8s
Mindbowser was very helpful with explaining the development process and started quickly on the project.
Executive Director of Product Development, Innovation Lab
The greatest benefit we got from Mindbowser is the expertise. Their team has developed apps in all different industries with all types of social proofs.
Co-Founder, Vesica
Mindbowser is professional, efficient and thorough.
Consultant, XPRIZE
Very committed, they create beautiful apps and are very benevolent. They have brilliant Ideas.
Founder, S.T.A.R.S of Wellness
Mindbowser was great; they listened to us a lot and helped us hone in on the actual idea of the app. They had put together fantastic wireframes for us.
Co-Founder, Flat Earth
Ayush was responsive and paired me with the best team member possible, to complete my complex vision and project. Could not be happier.
Founder, Child Life On Call
The team from Mindbowser stayed on task, asked the right questions, and completed the required tasks in a timely fashion! Strong work team!
CEO, SDOH2Health LLC
Mindbowser was easy to work with and hit the ground running, immediately feeling like part of our team.
CEO, Stealth Startup
Mindbowser was an excellent partner in developing my fitness app. They were patient, attentive, & understood my business needs. The end product exceeded my expectations. Thrilled to share it globally.
Owner, Phalanx
Mindbowser's expertise in tech, process & mobile development made them our choice for our app. The team was dedicated to the process & delivered high-quality features on time. They also gave valuable industry advice. Highly recommend them for app development...
Co-Founder, Fox&Fork
