When you create a pre-signed URL for your object, you must provide expiration date and time. The pre-signed URLs are valid only for the specified duration.
Anyone who receives the pre-signed URL can then access the object.
We have some security issue here, considering anyonw how gets this URL can access associated resource. Do we have any mechanism where we can embedd authorization as part of this presigned URL ?
Like, can we add Canned ACL header as part of this URL request, so only granted users\or groups can access the resource.
Really appreciate Answer on this.