A developer is storing JSON files in an Amazon S3 bucket. The developer wants to securely share an object with a specific group of people. How can the developer securely provide temporary access to the objects that are stored in the S3 bucket?
A.
Set object retention on the files. Use the AWS software development kit (SDK) to restore the object before subsequent requests. Provide the bucket's S3 URL.
B.
Use the AWS software development kit (SDK) to generate a presigned URL. Provide the presigned URL.
C.
Set a bucket policy that restricts access after a period of time. Provide the bucket's S3 URL.
D.
Configure static web hosting on the S3 bucket. Provide the bucket's web URL.
also B,
https://docs.aws.amazon.com/AmazonS3/latest/userguide/ShareObjectPreSignedURL.html
All objects by default are private. Only the object owner has permission to access these objects. However, the object owner can optionally share objects with others by creating a presigned URL, using their own security credentials, to grant time-limited permission to download the objects.
B) Correct - A presigned URL is a secure way to grant temporary access to objects in an S3 bucket without exposing credentials or altering the bucket's access permissions. The presigned URL is generated programmatically using the AWS SDK or CLI and includes a limited validity period. Once the URL expires, access to the object is denied.
Only the object owner can access to a private object in an S3 bucket. He can create a presigned URL for guarantee access to other people by using his credentials. Furthemore, the presigned URLs will expired after a configurable period of time. The answer is defenitely B
The same issue would apply to C - anyone with the S3 URL would have access for that amount of time. The difference is, with B, when that signed URL is expired, it's done for good, and to share with a different set of people you generate a new signed URL. With C, to share with a new set of people you would re-open the S3 bucket... meaning the original set of people would regain access as well.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
denccc
Highly Voted 3 years, 3 months agodave0808
Highly Voted 3 years, 3 months agosumanshu
Most Recent 4 months, 1 week agoAsmaZoheb
1 year, 3 months agorcaliandro
1 year, 10 months agoimvb88
1 year, 11 months agoMMaquis
2 years, 2 months agorobotgeek
2 years, 2 months agoJonasKahnwald
4 months, 1 week agocdm2009
1 year, 6 months agoKiDe
2 years, 10 months agomohamedba
2 years, 10 months agoJP_PA
3 years, 2 months ago