AWS-S3 Signed URL Security concern

When you create a pre-signed URL for your object, you must provide expiration date and time. The pre-signed URLs are valid only for the specified duration.

Anyone who receives the pre-signed URL can then access the object.

We have some security issue here, considering anyonw how gets this URL can access associated resource. Do we have any mechanism where we can embedd authorization as part of this presigned URL ?

Like, can we add Canned ACL header as part of this URL request, so only granted users\or groups can access the resource.

Really appreciate Answer on this.

Replay

Category: aws Time: 2016-07-29 Views: 0
Tags: aws

Related post

iOS development

Android development

Python development

JAVA development

Development language

PHP development

Ruby development

search

Front-end development

Database

development tools

Open Platform

Javascript development

.NET development

cloud computing

server

Copyright (C) avrocks.com, All Rights Reserved.

processed in 0.142 (s). 12 q(s)