开发者

Amazon S3 - Bucket Policy

Having a heck of a time setting up a referer policy from my url to have access to an Amazon S3 bucket.

I can get it to work with my .myurl.com/ but anytime the request from a secure https request, my access is denied even with the wild card.

Thanks

Edit: Rushed my first initial post, here's more detail.

I have a bucket policy on amazon s3 that only allows access if it comes from my url(s).

"aws:Referer": [
                    "*.myurl.com/*",
                    "*.app.dev:3000/*" ]

This referer policy correctly only allows connections from my dev environment and also my staging url if accessed via http. However, if the user is located at https://www.myurl.com/* they are denied access from A开发者_Go百科mazon.

Is there a way to allow https connections to Amazon S3? Is it my Bucket Policy? I've tried hard coding the https url into the bucket policy, but this did not do the trick.

Sorry about being overly brief.


From the HTTP/1.1 RFC:

Clients SHOULD NOT include a Referer header field in a (non-secure) HTTP request if the referring page was transferred with a secure protocol.

0

上一篇:

下一篇:

精彩评论

暂无评论...
验证码 换一张
取 消

最新问答

问答排行榜