Amazon S3 - 将本地计算机添加到允许的引用者列表中

时间:2014-04-29 16:50:24

标签: amazon-web-services amazon-s3

我有一个存储桶策略(下面),只允许从我们的远程网站访问S3(以防止热链接)。我希望能够在使用本地计算机工作时访问这些文件。我已经尝试将我的IP地址,本地IP和localhost添加到aws:Referer但是没有用。

对于我想要完成的任务,我希望能够使用直接链接直接访问浏览器中的文件:https://s3.amazonaws.com/[bucket]/[filename]

有什么建议吗?谢谢!

{
"Version": "2012-10-17",
"Id": "http referer policy example",
"Statement": [
    {
        "Sid": "Allow get requests referred by www.mysite.com and mysite.com",
        "Effect": "Allow",
        "Principal": "*",
        "Action": "s3:GetObject",
        "Resource": "arn:aws:s3:::[bucketname]/*",
        "Condition": {
            "StringLike": {
                "aws:Referer": [
                    "http://www.[mysite].com/*",
                    "http://192.168.1.6/*",
                    "http://foundwaves.com/*",
                    "http://[ip]/*",
                    "http://localhost/*"
                ]
            }
        }
    },
    {
        "Sid": "Explicit deny to ensure requests are allowed only from specific referer.",
        "Effect": "Deny",
        "Principal": "*",
        "Action": "s3:*",
        "Resource": "arn:aws:s3:::foundwaves/*",
        "Condition": {
            "StringNotLike": {
                "aws:Referer": [
                    "http://www.[mysite].com/*",
                    "http://192.168.1.6/*",
                    "http://foundwaves.com/*",
                    "http://[ip]/*",
                    "http://localhost/*"
                ]
            }
        }
    }
]

}

0 个答案:

没有答案
相关问题
最新问题