Zeta
Reputation: 534
Is custom condition supported in the AWS cloud front policy?
In AWS cloud front, for private content delivery there are two options:
- Signed URL
- Signed Cookies
In custom policy inside the statement they have defined:
{
"Statement": [
{
"Resource":"URL or stream name of the object",
"Condition":{
"DateLessThan":{"AWS:EpochTime":required ending date and time in Unix time format and UTC},
"DateGreaterThan":{"AWS:EpochTime":optional beginning date and time in Unix time format and UTC},
"IpAddress":{"AWS:SourceIp":"optional IP address"}
}
}
]
}
In the condition they talk about only 3 types of condition settings.
My question is - Are custom policy possible here? Say pass a string token and validate if that token is?
Upvotes: 0
Views: 32
Answers (1)
Ashan
Reputation: 19748
My question is - Are custom policy possible here? Say pass a string token and validate if that token is?
This is not currently possible. According to the documentation only the following fields are allowed inside the policy (Since this is not an IAM policy)
- Rosource
- DateLessThan
- DateGreaterThan (Optional)
- IpAddress (Optional)
Upvotes: 2
Related Questions
- How to provide multiple StringNotEquals conditions in AWS policy?
- AWS S3 bucket policy with condition
- S3 bucket policy multiple conditions
- how to add a condition when writing a aws policy via cloudformation?
- AWS IAM Conditional Policies
- How to set Policy conditions in Java AWS S3 SDK presigned url
- To use AWS condition keys, is it mandatory that they are present in the Request Context?
- AWS S3 policy conditional access based on request params
- Condition in a bucket policy to only allow specific service
- Adding custom condition in S3 bucket policy