Score:0

Sensitive HTML file served by AWS S3 website hosting

gb flag

How must I configure an S3 bucket to serve sensitive content via website hosting (where the bucket name is the same as the DNS record)? The website will only be reachable from within intranet.

Since it's sensitive material, the bucket and its contents must have public access blocked, obviously. Now, the only file I want to be able to view on a browser is a report.html that I can easily configure as the "index.html" for that S3 website.

Currently I have the bucket blocking public access, with the exception of specific objects that are configured to be publicly accessible via ACL. And of course I have configured the job that generates the report to make it accessible via ACL. This way I can view the report fine on the browser. Still, that specific object is now publicly readable.

So the question is, how can I make that object readable only via the website?

Thanks for any clues.

Tim avatar
gp flag
Tim
I haven't tried to do this. Off the top of my head, things I would investigate are S3 IP restrictions and CloudFront content restrictions.
I sit in a Tesla and translated this thread with Ai:

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.