Add parameter to restrict access to static website
andreaswittig opened this issue · 1 comments
andreaswittig commented
TemplateID: static-website/static-website
Region: us-east-1
I'm using the static-website template to store and deliver user-generated content. The content should not be accessible to anyone (not public). Instead, I'm using S3 presigned object URLs to authenticate the requests. However, the bucket policy included in the static-website template allows public read access to all S3 objects.
I suggest, that we add a parameter allowing to disable the bucket policy granting read access to all objects.
What do you think, @michaelwittig?
andreaswittig commented
Sorry, does not make any sense. S3 resigned object URLs do not work behind CloudFront.