Ends in
00
days
00
hrs
00
mins
00
secs
SHOP NOW

🚀 25% OFF All Practice Exams, Video Courses, & eBooks – Cyber Sale Extension!

Find answers, ask questions, and connect with our
community around the world.

Home Forums AWS AWS Certified Solutions Architect Professional Cloudfront signed URL vs signed cookies Reply To: Cloudfront signed URL vs signed cookies

  • Kenneth-Samonte-Tutorials-Dojo

    Member
    August 24, 2021 at 10:58 pm

    Hi khawaja,

    Thank you for sharing your feedback on this question.

    Yes, it is possible to use signed cookies for restricting read access to the files in the S3 bucket however, for implementation on a single client I think the signed URLs are still preferable.

    The signed cookies are helpful if for example, you want a group of users that want to access the “premium users only” page of your website, then all accounts that have that cookie are allowed. In this setup, you also need to have your application always send the “Set-Cookie” header to be used by CloudFront for verification. Also, the signed cookies are only a feature for the CloudFront distribution. If any of the other clients know the URL of the S3 object, they can directly access it.

    If you use Signed URLs, both Amazon CloudFront and S3 natively support the signing of URLs, therefore, the users only having the direct S3 url of the object will not be allowed, because access is only limited to pres-signed URLs.

    Hope this helps.

    Let us know if you need further assistance. The Tutorials Dojo team is dedicated to helping you pass your AWS exam!

    Regards,

    Kenneth Samonte @ Tutorials Dojo

Skip to content