I would make video awailable but only from my own domain. Do you think it is possible to set it up with AWS S3? Or anyway this kind of intellectial property protection is not possible. If asset is available in a website, people can download it anyway, right?!

If this is the case I should prevent listing of the bucket and put salt in the name of the filename? The most valuable assets are available only with registration - login.

CodePudding user response：

You'd need a custom policy for that.

{
  "Version":"2021-11-13",
  "Id":"White list a specific http-referrer",
  "Statement":[
    {
      "Sid":"Allow get requests originating from www.giuseppemandato.com",
      "Effect":"Allow",
      "Principal":"*",
      "Action":"s3:GetObject",
      "Resource":"arn:aws:s3:::BUCKET_NAME/*",
      "Condition":{
        "StringLike":{"aws:Referer":["http://www.giuseppemandato.com/*","http://giuseppemandato.com/*"]}
      }
    }
  ]
}

You can flip it by stating Effect: Deny eventually, and ignore any req coming from the given domain.

• Also, check CORS configs here too https://www.eternalsoftsolutions.com/blog/how-to-restrict-s3-bucket-for-specific-domain-name/