[英]AWS EC2 instance with access to S3 bucket for streaming a video
I am quite familiar with EC2 instances, IAM's (users, roles, groups), S3 buckets and policies and hope the community can help me here. 我对EC2实例,IAM(用户,角色,组),S3存储桶和策略非常熟悉,希望社区可以在这里为我提供帮助。
Let's assume I have an EC2 instance with a webserver running. 假设我有一个运行Web服务器的EC2实例。 This EC2 instance hosts a web video player (video js, JWPlayer etc.).
此EC2实例托管一个Web视频播放器(视频js,JWPlayer等)。 Ideally I would like to host an MP4 on a S3 bucket without making the S3 bucket public.
理想情况下,我希望在不公开S3存储桶的情况下将MP4托管在S3存储桶中。
My initial thought was that I could either create a role with full access to the S3 bucket or assign a policy to the bucket that allows the instance to have access. 我最初的想法是,我可以创建一个对S3存储桶具有完全访问权限的角色,也可以为该存储桶分配一个允许实例访问的策略。
I have tried many policies and roles but neither seem to work. 我尝试了许多策略和角色,但似乎都没有用。 Now I am wondering if this is even possible.
现在我想知道这是否有可能。
I understand that this architecture is not perfect and that you would potentially use cloudfront to serve the video. 我了解这种架构并不完美,您可能会使用Cloudfront来提供视频。 However, this is just a proof of concept...if possible.
但是,这仅仅是概念证明……如果可能的话。 Thank you guys!!
感谢大伙们!!
This is the perfect use-case for an Amazon S3 pre-signed URL , which provides time-limited access to a private object. 这是Amazon S3 预签名URL的完美用例,它提供了对私有对象的限时访问。 It completely offloads the traffic to S3, making it highly scalable for serving content.
它将流量完全卸载到S3,使其具有很高的可伸缩性,可以提供内容。
Basically: 基本上:
<img src="...">
<img src="...">
Yes, a user can share the link with other people, but it expires after the given time period. 是的,用户可以与其他人共享该链接,但是该链接在给定时间段后到期。
You can also Serve Private Content through CloudFront , which can work better for many media players because it can serve streaming media . 您还可以通过CloudFront服务私人内容 ,因为它可以为流媒体提供服务,所以它对于许多媒体播放器来说效果更好。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.