|
A distribution is a link between an
Amazon S3 bucket
(the origin server) and a domain name (assign by
Amazon CloudFront
). You use this new domain name in place of standard Amazon S3 references.Public Distribution has "All User" read permission, but if you want to restrict who can access your objects, then you can do it through creating
Private Distribution
.
Create Private Distribution:
Once you've stored your objects in your origin server (Amazon S3 Bucket), inorder to make Amazon CloudFront recognize your objects and restrict who can access your objects, you need to create a private distribution, which is a link between an Amazon S3 bucket (the origin server) and a domain name (which Amazon CloudFront automatically assigns). To create a private distribution you need to set some additional configuration in which you specify
OriginAccessIdentityID
and AWS
Trusted Signers
with other distributon configuration i.e. Bucket name, CNAME(s), Comment and Enable/Disable. In configuration CNAME(s) and Comment are optional. After that You set the ACL on your objects so that only you and CloudFront have read permission for the objects. This means that end user access to the objects can only be through CloudFront. You also produce special signed URLs for the particular end users you want to give access to.
-
Origin Access IdentityID
:
An authenticated virtual identity to fetch private objects from your origin server.
-
Trusted Signers
:
It is a list of AWS user's Account Numbers (other than yours) that you want to give signing authority.
Follow the given steps to Create Private Distribution:
-
Run Bucket Explorer.
-
Choose "Distribution" icon from Bucket table toolbar or you can do the same by selecting "Manage Distribution" option from right click menu option of any bucket.
-
It displays a "List distribution" window having list of already created distributions.
-
To create new distribution choose "New" icon from toolbar of List distribution window.
-
It opens new window to create distribution, now you need to set configuration for private distribution.
To set configuration you need to give following information:
-
Select bucket name from drop down list.
-
Select distribution type "PRIVATE".
-
To create disabled distribution, deselect check box "Enable Distribution", by default it is enabled.
-
If you want to give comments for distribution then write comment in comment text field.
-
Add CNAME(s) to list box by clicking "+" button and you can remove CNAME(s) by clicking "-" button. You can give maximum up to 10 CNAME(s).
-
Click on Advance Button exist at left-bottom corner.
-
It will open Advance panel.
-
Here you have to set Origin Access Identity and Trusted Signer [Optional] (other than your account number)
-
Set Origin Access Identity from existing or create new.
-
Add AWSAccountNumber in TrustedSigners list.
-
Click OK.
-
After setting the entire values for private distribution click on "Create" button, It will create private distribution for your specified bucket.
|
|
|
Related Topics
:
|
|
|
Home
.
About us . Contact us . Privacy
. Blog
