Рет қаралды 1,702
Create a CloudFront origin access identity (OAI) and associate it with distribution, update the S3 bucket policy permissions so that only CloudFront can use the OAI to access the content from the S3 bucket and make sure that users can’t use a S3 endpoint or direct url to access the content.
Timestamps:
00:00 Intro
00:33 Origin Access Identity concept
01:45 Verify Amazon S3 bucket static hosting
03:04 Modify CloudFront Origin
05:12 Restrict S3 bucket public access