chore: remove unused S3 SignatureVersion setting

[ricardogarim]

Proposed changes (including videos or screenshots)

• Remove the remaining (now unused) SignatureVersion-related code from the S3 config.
• Drop the corresponding i18n entries for this setting across all locales.

The AWS SDK v3 S3 client always uses Signature Version 4 and no longer accepts a configurable signature version, so this setting had become a no-op.

Issue(s)

• CORE-1287
• chore(deps): upgrade aws sdk to v3 #36659

Steps to test or reproduce

Further comments

Created the migration PR for the future: #39488.

Summary by CodeRabbit

• Bug Fixes
  • Removed the S3 Signature Version configuration option. The setting is no longer available for Amazon S3 file uploads.
  • Updated localization files across 40+ languages to reflect this change.

[dionisio-bot]

Looks like this PR is ready to merge! 🎉
If you have any trouble, please check the PR guidelines

[coderabbitai]

Note

Reviews paused

It looks like this branch is under active development. To avoid overwhelming you with review comments due to an influx of new commits, CodeRabbit has automatically paused this review. You can configure this behavior by changing the reviews.auto_review.auto_pause_after_reviewed_commits setting.

Use the following commands to manage reviews:

• @coderabbitai resume to resume automatic reviews.
• @coderabbitai review to trigger a single review.

Use the checkboxes below for quick actions:

• ▶️ Resume reviews
• 🔍 Trigger review

Walkthrough

This pull request removes the FileUpload_S3_SignatureVersion configuration setting, its definition in the settings module, and all associated localization entries across 50+ language files. The setting is removed from the S3 connection configuration initialization.

Changes

Cohort / File(s)	Summary
S3 Configuration Removal apps/meteor/app/file-upload/server/config/AmazonS3.ts, apps/meteor/server/settings/file-upload.ts	Removed FileUpload_S3_SignatureVersion setting retrieval from config connection and deleted the public setting definition from file upload settings.
Localization Updates packages/i18n/src/locales/*.i18n.json (50+ files)	Removed FileUpload_S3_SignatureVersion translation key from all locale files including en, af, ar, de, es, fr, ja, ko, ru, zh, and others. Minor formatting adjustments (space after colon) in a few files like az, be-BY, bg, bs, ca, cs, da, de.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Out of Scope Changes check	⚠️ Warning	The PR includes a minor formatting change in multiple locale files (adding space after colon in registration.component.form.invalidEmailDomain entries), which is unrelated to the primary objective of removing SignatureVersion settings.	Remove the unrelated formatting changes to registration.component.form.invalidEmailDomain entries from locale files, or document them separately as a distinct change from the SignatureVersion removal.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Title check	✅ Passed	The PR title clearly and accurately describes the main change: removing the unused S3 SignatureVersion setting from the codebase across configuration files and all locale files.
Linked Issues check	✅ Passed	The PR addresses the AWS SDK v3 migration requirement by removing the SignatureVersion setting that v3 no longer supports, directly fulfilling CORE-1287's objective to adapt or remove settings incompatible with SDK v3.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

Warning

Review ran into problems

🔥 Problems

Git: Failed to clone repository. Please run the @coderabbitai full review command to re-trigger a full review. If the issue persists, set path_filters to include or exclude specific files.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[changeset-bot]

⚠️ No Changeset found

Latest commit: cf031f4

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 70.89%. Comparing base (692a891) to head (cf031f4).
⚠️ Report is 4 commits behind head on develop.

Additional details and impacted files

@@             Coverage Diff             @@
##           develop   #39244      +/-   ##
===========================================
+ Coverage    70.87%   70.89%   +0.01%     
===========================================
  Files         3196     3196              
  Lines       113288   113287       -1     
  Branches     20531    20520      -11     
===========================================
+ Hits         80294    80312      +18     
+ Misses       30943    30930      -13     
+ Partials      2051     2045       -6     

Flag	Coverage Δ
e2e	60.36% <ø> (-0.02%)	⬇️
e2e-api	47.81% <ø> (+0.05%)	⬆️
unit	71.62% <ø> (+0.02%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[KevLehman]

I kinda remember that if you remove the english translation, then all the other translations would be removed by lingohub at the next update 👀 (for the future)

[cubic-dev-ai]

No issues found across 58 files

[KevLehman]

After merging this one, would u mind creating a task for removing the setting with a migration?

The base branch was changed.

[coderabbitai]

Actionable comments posted: 1

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

apps/meteor/app/file-upload/ufs/AmazonS3/server.ts (1)

23-31: ⚠️ Potential issue | 🟠 Major

Apply ACL to upload parameters in getWriteStream.

The params.ACL property is read from settings and defined in S3Options but is never applied to PutObjectCommandInput in getWriteStream. Since ACL controls object permissions in S3, this omission prevents the configured access control from being applied to uploaded files.

Fix: Add ACL to upload params

const uploadParams: PutObjectCommandInput = {
	Key: this.getPath(file),
	Body: writeStream,
	Bucket: classOptions.params.Bucket,
+	ACL: classOptions.params.ACL,
};

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@apps/meteor/app/file-upload/ufs/AmazonS3/server.ts` around lines 23 - 31, The
S3Options type includes params.ACL but that ACL is not being added to the
PutObjectCommandInput in getWriteStream, so update the getWriteStream
implementation to include params.ACL when constructing the upload parameters;
specifically, when building the PutObjectCommandInput (or the object passed to
PutObjectCommand) inside getWriteStream, add an "ACL: options.params.ACL" (or
equivalent) field so the configured ACL value from S3Options.params is applied
to the uploaded object.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@apps/meteor/app/file-upload/ufs/AmazonS3/server.ts`:
- Around line 125-134: The delete path currently logs errors inside the
try/catch around s3.send(new DeleteObjectCommand(...)) but swallows them, so
callers never learn deletions failed; update the catch in the method that calls
s3.send (the block using DeleteObjectCommand, getPath(...) and
classOptions.params.Bucket) to rethrow the caught error after calling
SystemLogger.error (or alternatively return a clear failure status), ensuring
the caller receives the failure instead of silent success.

---

Outside diff comments:
In `@apps/meteor/app/file-upload/ufs/AmazonS3/server.ts`:
- Around line 23-31: The S3Options type includes params.ACL but that ACL is not
being added to the PutObjectCommandInput in getWriteStream, so update the
getWriteStream implementation to include params.ACL when constructing the upload
parameters; specifically, when building the PutObjectCommandInput (or the object
passed to PutObjectCommand) inside getWriteStream, add an "ACL:
options.params.ACL" (or equivalent) field so the configured ACL value from
S3Options.params is applied to the uploaded object.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 42ccd6d0-6d94-493d-8e5b-db039c815858

📥 Commits

Reviewing files that changed from the base of the PR and between 36f4192 and dc39bad.

📒 Files selected for processing (4)

• apps/meteor/app/file-upload/server/config/AmazonS3.ts
• apps/meteor/app/file-upload/ufs/AmazonS3/server.ts
• apps/meteor/package.json
• apps/meteor/server/settings/file-upload.ts

💤 Files with no reviewable changes (1)

• apps/meteor/server/settings/file-upload.ts

🚧 Files skipped from review as they are similar to previous changes (1)

• apps/meteor/app/file-upload/server/config/AmazonS3.ts

📜 Review details

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (3)

• GitHub Check: 📦 Build Packages
• GitHub Check: CodeQL-Build
• GitHub Check: CodeQL-Build

🧰 Additional context used

📓 Path-based instructions (1)

**/*.{ts,tsx,js}

📄 CodeRabbit inference engine (.cursor/rules/playwright.mdc)

**/*.{ts,tsx,js}: Write concise, technical TypeScript/JavaScript with accurate typing in Playwright tests
Avoid code comments in the implementation

Files:

• apps/meteor/app/file-upload/ufs/AmazonS3/server.ts

🧠 Learnings (3)

📓 Common learnings

Learnt from: ahmed-n-abdeltwab
Repo: RocketChat/Rocket.Chat PR: 38974
File: apps/meteor/app/api/server/v1/im.ts:220-221
Timestamp: 2026-02-24T19:09:09.561Z
Learning: In RocketChat/Rocket.Chat OpenAPI migration PRs for apps/meteor/app/api/server/v1 endpoints, maintainers prefer to avoid any logic changes; style-only cleanups (like removing inline comments) may be deferred to follow-ups to keep scope tight.

📚 Learning: 2026-02-26T19:25:44.063Z

Learnt from: gabriellsh
Repo: RocketChat/Rocket.Chat PR: 38778
File: packages/ui-voip/src/providers/useMediaSession.ts:192-192
Timestamp: 2026-02-26T19:25:44.063Z
Learning: In the Rocket.Chat repository, do not reference Biome lint rules in code review feedback. Biome is not used even if biome.json exists; only reference Biome rules if there is explicit, project-wide usage documented. For TypeScript files, review lint implications without Biome guidance unless the project enables Biome rules.

Applied to files:

• apps/meteor/app/file-upload/ufs/AmazonS3/server.ts

📚 Learning: 2026-02-26T19:25:44.063Z

Learnt from: gabriellsh
Repo: RocketChat/Rocket.Chat PR: 38778
File: packages/ui-voip/src/providers/useMediaSession.ts:192-192
Timestamp: 2026-02-26T19:25:44.063Z
Learning: In this repository (RocketChat/Rocket.Chat), Biome lint rules are not used even if a biome.json exists. When reviewing TypeScript files (e.g., packages/ui-voip/src/providers/useMediaSession.ts), ensure lint suggestions do not reference Biome-specific rules. Rely on general ESLint/TypeScript lint rules and project conventions instead.

Applied to files:

• apps/meteor/app/file-upload/ufs/AmazonS3/server.ts

🔇 Additional comments (5)

apps/meteor/app/file-upload/ufs/AmazonS3/server.ts (4)

140-161: LGTM!

The getReadStream implementation correctly uses GetObjectCommand with proper range header formatting and includes appropriate null/type checks for the response body before returning it.

---

192-205: LGTM with minor inconsistency.

The Upload usage from @aws-sdk/lib-storage is the correct v3 approach for streaming uploads. The promise handling correctly emits events on completion/error.

Minor note: Line 203 uses { err: error } while Line 133 uses { error }. Consider aligning for consistency in log parsing.

---

83-95: LGTM!

The getSignedUrl implementation correctly uses the v3 presigner with GetObjectCommand, proper expiresIn configuration, and appropriate content disposition handling.

---

57-62: No issue: customUserAgent is a valid configuration option for AWS SDK v3's S3Client. The code correctly uses this property to customize the user agent string sent in requests.

apps/meteor/package.json (1)

69-71: AWS SDK v3 package versions are valid and secure.

All three packages (@aws-sdk/client-s3, @aws-sdk/lib-storage, @aws-sdk/s3-request-presigner) at version 3.862.0 exist on npm, and no known security vulnerabilities are reported.