Skip to content

Latest commit

 

History

History
19 lines (16 loc) · 1.16 KB

S3_Controlling_Access.md

File metadata and controls

19 lines (16 loc) · 1.16 KB

Controlling Access to S3 Buckets

  • Return to table of contents

  • Useful Links:

  • Exam Tips:

    • Private by default.
    • Tags and resource policies can work together to grant extensive permissions.
    • Questions about object specific permissions and access via a URL, define an object level ACL.
    • Pre-Signed URLs:
      • Uses the identity of the user who created the pre-signed URL.
      • When using a pre-signed url, the user does not need to have currently valid permissions to access the object.
      • Has an expiration.
      • Generally used by applications within AWS to provide specific permissions.
        • Think of someone purchasing an image and than being given a pre-signed URL to download the image from S3 for a limited amount of time.
        • The point of creating the URL is when the permissions are checked and applied, and when using the URL in the future the permissions of the URL are checked.