- Newest
- Most votes
- Most comments
You can use a combination of AWS Lambda and Amazon API Gateway.
[1] The Lambda function generates presigned URLs for the S3 objects, which are temporary links that grant access for a limited time. You can expose this function through API Gateway and integrate it with your Grafana dashboard.
[2] To ensure that only authorized users can access the download link, you can configure the API Gateway with a Lambda authorizer that validates the user's identity. This way, when a user requests to download an S3 object, the dashboard makes an API call to the Lambda function, which returns the presigned URL if the user is authenticated.
[3] On the client side, when a user clicks the download link in the Grafana dashboard, the dashboard first makes an API call to get the presigned URL and then redirects the user's browser to that URL for downloading the object. This approach ensures that the download links are secure and accessible only to authorized users.
Relevant content
- asked 2 years ago
- asked a year ago
AWS OFFICIALUpdated a year ago- AWS OFFICIALUpdated 7 months ago
- AWS OFFICIALUpdated 3 years ago
- AWS OFFICIALUpdated a year ago
Thanks, this is the design I will probably adopt - authorize the users to AWS with with SAML and grant them permissions to the S3 bucket.