Access a S3 folder specific to particular user authenticated using Cognito and Cloudfront
Hi,
I saw a previous question posted here which is similar to what i am trying to do except my S3 bucket has a Cloudfront distribution in front of it and I want to use the Cloudfront distribution URL in my application for users to retrieve objects from the S3 bucket. I want to have 1 bucket for all the users but want to ensure that each user will have access to only their folder's objects. How do I do so using Cognito and Cloudfront?
Would I need to use Cloudfront signed URLs?
- 최신
- 최다 투표
- 가장 많은 댓글
Hello.
I think the answer to the question at this URL is close to your situation.
https://repost.aws/questions/QUV2b7c7ftQhOLrM1O0BT9XA/using-cognito-and-cloudfront-to-control-access-to-user-files-on-s3
I think the flow will be to authenticate using Lambda@Edge on CloudFront and access S3 using the credentials of the Cognito ID pool.
https://github.com/aws-samples/cloudfront-authorization-at-edge
