Can anyone help with Amazon S3 Access Control probelm?

5 replies
Hi folks

This might be a really simple issue for someone who has experience with hosting files on Amazon S3, for download by their members / subscribers. I'm just finding my feet with S3 and what I thought looked relatively straightforward, is causing me a few headaches.

I have my bucket, with a few folders and a test zip file for download in one of the folders. I am setting up a membership site and I only want signed in members to be able to download the files.

I set up a bucket policy (which I built using the Amazon S3 tool) - as an http referrer policy - with the idea being that requests for download coming from within my site would be authenticated. So the statement goes like this ...
"Sid":"Allow get requests referred by www.mydomain.com and mydomain.com". Obviously mydomain.com is replaced with my real domain name and there is more to the complete bucket policy.
I have applied the bucket policy to the bucket and all subfolders and objects.

I have also checked the Read box for Authenticated Users for the Bucket, the folder and the object, in the ACL Settings.

When I put a download link in my members area, I get an 'Access Denied' message.

However, I can download my test file if I also check the Read box for 'All Users', but then I can also download it from a page on another domain too, and I don't want completely public access.

Any ideas what I'm doing wrong? How do I restrict access to my files, to just my subscribers - where they can download the files when they are signed in to the membership area of my site? I guess many people here must have membership sites where the assets are for members only.

Many thanks
Kate
#access #amazon #control #probelm
  • Profile picture of the author kenn1288
    You need to have a plugin for that. I experience already setting-up wordpress membership site using Wishlist membership plugin with video, audio's, pdf's and zip file hosted in amazon s3. You can use either of these two plugins WordPress Video Plugin and Video Player For Amazon S3 - Adding the 4th S to S3 - For "Security" or Amazon S3 Secure Video Streaming – S3FlowShield

    I hope it helps.
    Signature

    Get your Visitors trust..Increase CTR, Increase Search Engine Ranking with Solid OnPage SEO. Make your site looks more professional--visit Silver Dream Web

    {{ DiscussionBoard.errors[5045972].message }}
    • Profile picture of the author Kate Davies
      Thanks for your reply Kenn.

      Unfortunately, I don't think that's the answer for this project, as these are zip files for download (not videos to stream). Also, it's not a Wordpress site, it's Joomla.

      But thank you so much for taking the time to reply, and I will check out your recommendations for other projects in the pipeline.

      Regards
      Kate
      Signature
      Local internet marketing in the UK
      Only the businesses who can be found online will succeed. Improve online visibility with www.vizzibiliti.co.uk
      {{ DiscussionBoard.errors[5045995].message }}
  • Profile picture of the author manchito
    Buckets are directories in a linux server. You are the "god" of those directories, able to grant of reject access to whoever you want to. so the bucjet can have any kind of data, that is video, or any other document, including zipped files.

    permisions are a thow ways handshake, in the server you have a pair of values, namely a key value, and a secret value.

    both sides(amazon s3 anf your site) have to know the two values, and a protocol in place, so amazon know that the requestor has access to the bucket.

    amazon s3 api documentation has the full details.

    I dont know about joomla, but you can google for several access plugins, both paid and free that makes your life easier.
    Signature

    Your 1st 100k Product - The Facebook Ads Method

    {{ DiscussionBoard.errors[5046060].message }}
  • Profile picture of the author kenn1288
    It doesn't matter whatever the file that you put on amazons3. I haven't had much experience setting-up Joomla websites with amazonS3. But what you need is a script to get access to your bucket using key value and secret value. The first thing Im sure you need to do is to restrict the those buckets from Public Users(Everyone) access, then find a script to access those buckets using those key I mentioned above, Either Manual Script or a Plugin.
    Signature

    Get your Visitors trust..Increase CTR, Increase Search Engine Ranking with Solid OnPage SEO. Make your site looks more professional--visit Silver Dream Web

    {{ DiscussionBoard.errors[5046162].message }}
    • Profile picture of the author Kate Davies
      Thank you both.

      Manchito ... it's the S3 API documentation that's given me the headaches! :rolleyes:

      I see what you mean now about the scripts. I think I'll sleep on it and research the scripts and plugins in the morning.

      Thanks again.
      Kate
      Signature
      Local internet marketing in the UK
      Only the businesses who can be found online will succeed. Improve online visibility with www.vizzibiliti.co.uk
      {{ DiscussionBoard.errors[5046191].message }}

Trending Topics