We’ve successfully use Cloudflare to serve the full content of our S3 bucket as suggested in:
However, we can’t figure out how to configure Cloudflare to allow the access only via S3 signed url.
For example, the S3 signed url for the object 001.jpg in MYBUCKET is https://s3.REGION.amazonaws.com/MYBUCKET/001.jpg?AWSAccessKeyId=xxx&Expires=1630977912&Signature=yyy
If we follow the configuration in the above link, the client can always access the object from
So, my question is, can we allow Cloudflare to access the object only via the url based on the S3 signed url (something like https://MYBUCKET/001.jpg?AWSAccessKeyId=xxx&Expires=1630977912&Signature=yyy) but disallow access for url without correct query parameters?