Is there a way stop logged in users copying and pasting resources in a S3 Bucket to other people?
Eg https://s3-ap-southeast-1.amazonaws.com/BucketName/Folder/91155-EXP.pdf
The 91155-EXP.pdf file only people who are logged can see.
I was wanting to know if something like this Serving private content with signed URLs and signed cookies - Amazon CloudFront would work
or is there cheaper easier option?
Cheers Dave
The easiest way to handle this is to deal with the doc through ActiveStorage where you let rails upload it into an amazon s3 bucket.
Active Storage will then generate an indirect link which goes through your app, and returns a signed time-limited AWS link.
You can add logic at the active storage controller to make sure the user is logged in, and if they copy and paste the redirected link - it won’t work for long.
There is some good chat here about how it would be really nice to avoid this complication
https://github.com/rails/rails/issues/31419
but it should give you some background info anyway!
Alternatively, you could roll your own - I assume the private content doc you linked is what rails is using under the hood.
Thanks
Keep up to date with Rails on Twitter and This Week in Rails
Policies: Conduct, License, Maintenance, Security, Trademarks