UPDATE: Added CORS policy (below) and still it is not working. Please someone help me find the problem.
I have been struggling with this for hours. I have a bucket called test-pcrp. I want the videos in this bucket to be viewable on my website only. Below are the bucket settings, bucket policy and CORS that I have in place. However, no matter what I do the video is not viewable on the site.
Bucket Settings:
OFF - Block all public access
ON - Block public access to buckets and objects granted through new access control lists (ACLs)
ON - Block public access to buckets and objects granted through any access control lists (ACLs)
OFF - Block public access to buckets and objects granted through new public bucket or access point policies
OFF - Block public and cross-account access to buckets and objects through any public bucket or access point policies
Policy:
{
"Version": "2012-10-17",
"Id": "http referer policy example",
"Statement": [
{
"Sid": "Allow get requests originating from www.dev.pcrprograms.org and dev.pcrprograms.org.",
"Effect": "Allow",
"Principal": "*",
"Action": "s3:GetObject",
"Resource": "arn:aws:s3:::test-pcrp/*",
"Condition": {
"StringLike": {
"aws:Referer": [
"https://dev.pcrprograms.org/*",
"http://dev.pcrprograms.org/*"
]
}
}
}
]
}
CORS Policy
[
{
"AllowedHeaders": [
"*"
],
"AllowedMethods": [
"GET",
"HEAD"
],
"AllowedOrigins": [
"https://dev.pcrprograms.org"
],
"ExposeHeaders": [],
"MaxAgeSeconds": 3000
}
]
question from:
https://stackoverflow.com/questions/65923423/how-do-i-make-my-s3-videos-viewable-on-specific-website-only 与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…
