Taz
Reputation: 5983
How to restrict access to origin for CloudFront only?
How to restrict access to origin for Amazon CloudFront only?
Upvotes: 3
Views: 2598
Answers (1)
Michael - sqlbot
Reputation: 178956
Create a Custom Origin Header with a secret value, and add it to the origin configuration in CloudFront.
Modify your origin server configuration to throw an error if a request comes in without this secret value.
This is one of the reasons CloudFront supports custom origin headers.
If you configure your custom origin to respond to requests only if they include a custom header, you can prevent users from bypassing CloudFront and submitting requests directly to your origin.
https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/forward-custom-headers.html
Upvotes: 5
Related Questions
- Restrict access to a particular CloudFront distribution using IAM
- How to restrict Cloudfront access to my domain only?
- Allow only CloudFront to read from origin servers?
- How to allow only cloudfront to access my api (elb)load balancer hosted on ec2 in AWS?
- CloudFront - Editing Origin - Restrict Bucket Access
- Restrict Amazon S3 to CloudFront and http referrer
- Allow CloudFront to access S3 origin while also having S3 bucket Block all public access?
- AWS Restrict access from cloudfront to load balancer
- Restrict access to AWS Cloudfront hosted content
- AWS CloudFront with custom HTTPS origin, only allow origin requests from CF?