Follow

Hosting Images FAQ

Here are best practices and key S3 features for keeping images secure:

  • HTTP Referrer headers

    1. Are pieces of code which create a security policy and only allow certain users the ability to access a domain. For example, you can set restrictions to only allow people from a ‘CrowdFlower.com’ domain to see the content in a bucket.
    2. Here are the HTTP referrer headers for CrowdFlower:
    3. To enable:
      1. Go to Permissions > Bucket PolicyScreen_Shot_2017-10-09_at_4.41.37_PM.png
      2. Add following code with specific referrer headers you’d like to accept:
      3. "Condition": {

                                     "StringLike": {

                                     "aws:Referer": [

                                                 "http://test.com/*",

                                                 "http://www.test.com/*"

  • Keep the login credentials secure via password protected policy (ex. LastPass)

  • Enable expiring images:

    • Go to “Management”
      1. Add lifecycle rule:Screen_Shot_2017-10-09_at_4.41.54_PM.png
      2. Enter a Rule Name:Screen_Shot_2017-10-09_at_4.42.06_PM.png
      3. Select the current version:Screen_Shot_2017-10-09_at_4.42.14_PM.png
      4. In the current version, set expiration after x days:Screen_Shot_2017-10-09_at_4.42.25_PM.png
      5. Review, Save:
        Screen_Shot_2017-10-09_at_4.42.38_PM.png

 







Was this article helpful?
0 out of 0 found this helpful


Have more questions? Submit a request
Powered by Zendesk