Usando AWS re:Post, accetti AWS re:Post Termini di utilizzo
AWS re:Postre:Post

Access a S3 folder specific to particular user authenticated using Cognito and Cloudfront

0

Hi,

I saw a previous question posted here which is similar to what i am trying to do except my S3 bucket has a Cloudfront distribution in front of it and I want to use the Cloudfront distribution URL in my application for users to retrieve objects from the S3 bucket. I want to have 1 bucket for all the users but want to ensure that each user will have access to only their folder's objects. How do I do so using Cognito and Cloudfront?

Would I need to use Cloudfront signed URLs?

Argomenti
ArchiviazioneSicurezza, identità e conformitàNetworking e distribuzione di contenuti
Tag
Servizio di archiviazione semplice di AmazonAmazon CognitoAmazon CloudFront
Lingua
English
AWS
AWS-User-0624041
posta 3 mesi fa229 visualizzazioni
1 Risposta
1

Hello.

I think the answer to the question at this URL is close to your situation.
https://repost.aws/questions/QUV2b7c7ftQhOLrM1O0BT9XA/using-cognito-and-cloudfront-to-control-access-to-user-files-on-s3

I think the flow will be to authenticate using Lambda@Edge on CloudFront and access S3 using the credentials of the Cognito ID pool.
https://github.com/aws-samples/cloudfront-authorization-at-edge

profile picture
ESPERTO
Riku_Kobayashi
con risposta 3 mesi fa

Accesso non effettuato. Accedi per postare una risposta.

Una buona risposta soddisfa chiaramente la domanda, fornisce un feedback costruttivo e incoraggia la crescita professionale del richiedente.

Linee guida per rispondere alle domande

Contenuto pertinente