- 新しい順
- 投票が多い順
- コメントが多い順
By default, video uploaded are restricted to public by default you would need to add more permissions to the object in your S3 bucket (which is the video)
Follow the steps below to allow the video to load/play on your website.
- From the Amazon S3 console, choose the bucket with the video
- Select the video
- Click on Properties
- Click on Permissions Tab
- Click on Add more permissions
- By the **Grantee **field, select Everyone
- Check the Open/Download or View Permissions box
- Click on Save
To Restric Access by referer: You can also prevent unauthorized access to your S3 bucket by referer. A referer is the URL of the webpage that a user is visiting when they request a resource from your S3 bucket. To restrict access to your S3 bucket by referer, you need to create a bucket policy that includes a statement that denies access to the bucket if the referer is not from a specific domain or set of domains.
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "RestrictAccessByReferer",
"Effect": "Deny",
"Principal": "",
"Action": "s3:GetObject",
"Resource": "arn:aws:s3:::example-bucket/",
"Condition": {
"StringNotLike": {
"aws:Referer": [
"http://www.example.com/",
"http://example.com/"
]
}
}
}
]
}
Restrict Object Access based on HTTP referer header: If you want your bucket to be public, but only to users who are requesting object from a specific website, or when specific HTTP headers are present in the request, you can add a string requirement to the bucket policy by specifying which HTTP header must be present.
{
"Version":"2012-10-17",
"Statement":[
{
"Sid":"AllowRequestHTTPHeader",
"Effect":"Allow",
"Principal":"",
"Action":["s3:GetObject","s3:GetObjectVersion"],
"Resource":"arn:aws:s3:::example-bucket/",
"Condition":{
"StringLike":{"aws:Referer":["http://www.example.com/","http://example.com/"]}
}
}
]
}
NOTE: This policy does not restrict any access to the bucket, but instead only grants access. If you wish to prevent any GET access to the bucket UNLESS it contains a specific HTTP header, then you would need to make a DENY policy. To do this, you can use DENY with a StringNotLike condition
{
"Version":"2012-10-17",
"Statement":[
{
"Sid":"AllowOnlyRequestsHTTPHeader",
"Effect":"Deny",
"Principal":"",
"Action":["s3:GetObject","s3:GetObjectVersion"],
"Resource":"arn:aws:s3:::example-bucket/",
"Condition":{
"StringNotLike":{"aws:Referer":["http://www.example.com/","http://example.com/"]}
}
}
]
}
[Reference]
How can I grant public read access to some objects in my Amazon S3 bucket?
Bucket policy examples
関連するコンテンツ
- 質問済み 6年前
- 質問済み 6年前
No I want to say is the iframe can’t play the video because I have setting referrer, I want to know how do I allow iframe play video only at my website the referrer only just can play video with the <video> html tag