Math is Hard
Reputation: 942
AWS S3 Upload Using Signed URL
AWS provides SDKs on iOS and Android to upload to their servers yet you don't want your key exposed if it was decompiled. How do you prevent that? Is there a way to sign a URL on the backend and give it to the client so they can upload directly onto S3 Without exposing the key?
Upvotes: 1
Views: 653
Answers (1)
dcro
Reputation: 13679
You can use Amazon STS (Security Token Service) to generate unique sign-in credentials that also expire automatically.
You can also control permissions on these temporary credentials obtained via STS (for example to allow only upload permissions in a certain S3 bucket).
Upvotes: 1
Related Questions
- Angular / AWS S3 - Upload file to AWS S3 using Presigned url
- Upload to S3 Bucket with Presigned URL gives 403 forbidden error
- How to upload objects to local s3 using pre-signed url
- Streaming uploading to S3 using presigned URL
- How to upload to AWS S3 directly from browser using a pre-signed URL instead of credentials?
- AWS S3 - 400 Bad Request when PUTting file via pre-signed URL
- S3 uploading and serving image with pre signed URL
- Failed to upload a object to S3 using signed URL
- Fetching signed URL from AWS S3 on my Node Server
- amazon s3 upload signed url public-read