Reputation: 137
What is recommended way to access Private S3 bucket from android app
We have S3 buckets which is private. s3 bucket is created manually and files in it uploaded by our .net server (files are also private) And we want to access these private files securely in android app. We did not have any login/sigup in app.
I am using following approach for it
1. Created identity pool and enabled access to unauthenticated identities as there is no any login in our app
2. Configured IAM role. for unAuth role, added inline policy to have full aceess to s3 bucket
And i am using following aws sample to test approach
https://github.com/awslabs/aws-sdk-android-samples/tree/master/S3TransferUtilitySample
My question is that
- Is it a right approach as files has copyrighted information and one should not able to hack bucket and receive all files without paying for it..
- above sample GitHub example is not working and giving error as access denied, but if i make bucket public, then I am able to access public files only, not private files. So, does this approach is not for private bucket ?
Thanks in advance.
Upvotes: 1
Views: 2345
Answers (1)
Reputation: 847
Using unauth identities might not be the best way in this case. Since unauth identities are can be obtained by anyone. You should ideally have your own authorizer to do this. It could be done in multiple ways like API Gateway and Lambda which gives you a pre-signed URL in the app which can be used to fetch S3 files.
Thanks, Rohan
Upvotes: 1
Related Questions
- Accessing AWS S3 from android app without hard-coding access keys
- How to integrate aws S3 to my android app?
- accessing aws private bucket in android without cognito
- Android Amazon s3 bucket
- Unable to access AWS S3 from Android
- How to use AWS S3 credentials in android for uploading contents
- How do you make an S3 object public via the aws SDK Android?
- accessing an existing Amazon S3 bucket
- Query s3 buckets on Android application
- Using Amazon Simple Storage Service (S3) on Android