Signed URLs are not inherently public, but they can be shared with anyone who has the URL, making them accessible to anyone who possesses the link. They are typically used to grant temporary access to a private resource, such as a file in a cloud storage bucket. Using signed cookies can be considered safer than signed URLs in some scenarios because signed cookies can restrict access to multiple resources (e.g., all files in a directory) and can be tied to a specific user session. This means that even if someone were to obtain the signed cookie, they would still need to be within the valid session to access the resources. Additionally, signed cookies do not expose the resource URL, adding an extra layer of security. However, the choice between signed URLs and signed cookies depends on the specific use case and the security requirements of your application.

Yes you can. I think as long as we map the same structure of creating using headers. It can be used for any urls with a scope, that you are protecting the assets that you have. Because remember that using this the assets are protected against direct url access.

@@Pythoholic I mean even the main.js, polyfill.js, render.js that needed to run the application?

Let me know the use case i can let you know better. Mostly if u use signed urls . The JS and css files along with that gets covered. So if there is anything specific then please let me know.

it will be covered in the DVA-C01 course coming yp

@@Pythoholic Waiting for DVA courses.

With cloud front while creating a cloud front distribution you can specify if you can provide access with HTTP or HTTPS (GET) to read the content, and there are PUT and POST to help user upload files from the URL that you specify, i guess you might be using Lambda to process it, So you can try changing your cloud front configuration to use PUT and POST. Let me know if that helps.

Thank you for your fast answer. I found out how to upload/download files directly to S3 Bucket via pre-signed URLs but I can't find any example code for uploading files through CloudFront via signed URLs.

Ok let me check and get back.

open the cloudfront in the console and open the open your cloudfront then you can see Restrictions -> click Restrictions -> geo Restrictions - select the GEO Restrictions and edit then you can select the Enable Geo-Restriction = yes then Whitelist then add the country which country people need to access your S3 bucket

I guess that might be the other way around. Every time we use s3 to upload files using cloudfront ie at the edge locations it means we are creating the distributions it should work the same without any restriction

Hmm... try karte hai isko aur simply karne ki.

@@Pythoholic no it is fine i think i have to read it first before watching,

@@Pythoholic sir why don't you create telegram group to share contents for reading, or for discussion.

No i have one for cloud front distributions, you can check that out.

Noted. Thanks for the feedback.

I will try and add one. Thanks for the feedback