Answer-first summary for fast verification
Answer: Using pre-signed URL
The correct option for enabling access to S3 objects with a time policy constraint is "Using pre-signed URL". By default, all objects in an S3 bucket are private, with only the object owner having permission to access them. However, the object owner can grant time-limited permission to others to download the objects by creating a pre-signed URL. This process involves using the object owner's security credentials to generate a URL that includes the necessary permissions and an expiration date and time. The pre-signed URL allows access to the specified object only for the duration specified, ensuring that private data remains secure while still allowing controlled access as needed.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
You are a .NET web application developer responsible for a project that references objects stored in an S3 bucket. Previously, these objects were accessed via a public URL, but this method was flagged during a code review due to the inclusion of private data in some objects. Consequently, an administrator has made the S3 bucket private, removing public access to the objects. To address this change, you need to create an application that enables users to access specific objects via a time-restricted policy. What is the optimal solution to grant access to these objects?
A
Using Routing Policy
B
Using IAM policy
C
Using bucket policy
D
Using pre-signed URL
No comments yet.