troubleshooting Question

AWS bucket permissions question

Avatar of tablaFreak
tablaFreakFlag for United States of America asked on
AWS
2 Comments2 Solutions223 ViewsLast Modified:
Hi - Can anyone share how to provide access to files from a given SSL URL on AWS Amazon Cloud Server (S3)? My bucket permissions work fine on an unsecured connection, but not on a SSL. Here's what I've got for permissions:

{
	"Version": "2012-10-17",
	"Id": "http referer policy",
	"Statement": [
		{
			"Sid": "Allow get requests referred by www.example.com and example.com.",
			"Effect": "Allow",
			"Principal": "*",
			"Action": "s3:GetObject",
			"Resource": "arn:aws:s3:::wellsource/*",
			"Condition": {
				"StringLike": {
					"aws:Referer": [
						"http://zzzz.com/*",
						"http://xxxx.com/*",
						"http://www.zzzz.com/*",
						"https://console.aws.amazon.com/*",
						"http://www.xxxx.com/*"
					]
				}
			}
		},
		{
			"Sid": "Explicit deny to ensure requests are allowed only from specific referer.",
			"Effect": "Deny",
			"Principal": "*",
			"Action": [
				"s3:DeleteObject",
				"s3:GetObject"
			],
			"Resource": "arn:aws:s3:::wellsource/*",
			"Condition": {
				"StringNotLike": {
					"aws:Referer": [
						"http://zzzz.com/*",
						"http://xxxx.com/*",
						"http://www.zzzz.com/*",
						"https://console.aws.amazon.com/*",
						"http://www.xxxx.com/*"
					]
				}
			}
		}
	]
}

Thanks,
Steve
ASKER CERTIFIED SOLUTION
Join our community to see this answer!
Unlock 2 Answers and 2 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 2 Answers and 2 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros