Usando AWS re:Post, accetti AWS re:Post Termini di utilizzo
AWS re:Postre:Post

How to avoid using S3 Object keys in generated temporary URLs?

0

Hello there. I have private access to my S3 objects and I'm using s3.getSignedUrl('getObject', options) method from SDK in my Node.js app. It's good solution for me except for the one thing: as I have multiple user roles in my application, I want to hide file names (object Key) for some of them. For this I am considering the option with Gateways API to use it as proxy for my temporary generated URLs. Please, let me know if I'm on the right way. It'll be good to initially generate link with another name using getSignedUrl('getObject'), but I'm not sure that this is possible.

Example of my current code,:

const fileTempUrl = s3.getSignedUrl('getObject', { Bucket: bucketName, Key: objectKey, Expires: ONE_DAY });

Thanks.

Argomenti
ServerlessFront-end web e dispositivi mobiliNetworking e distribuzione di contenutiArchiviazione
Tag
Gateway API di AmazonS3 SelectS3 Object Lock
Lingua
English
rePost-User-9416183
posta un anno fa342 visualizzazioni
1 Risposta
1

Hi.

The API approach could work, but I would recommend to give Cloudfront signed URLs a try: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/private-content-signed-urls.html https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/modules/_aws_sdk_cloudfront_signer.html

profile picture
ESPERTO
Antonio_Lagrotteria
con risposta un anno fa
  • rePost-User-9416183
    un anno fa

    Yes, but this implementation won't help me with main problem described in the question. URL will still contain Object Key

  • Antonio_Lagrotteria ESPERTO
    un anno fa

    I see. then either a proxy as you suggested, or a lambda that copies the files in another folder with a hashed value for the key could be the left possibilities

Accesso non effettuato. Accedi per postare una risposta.

Una buona risposta soddisfa chiaramente la domanda, fornisce un feedback costruttivo e incoraggia la crescita professionale del richiedente.

Linee guida per rispondere alle domande

Contenuto pertinente