AWS S3 bucket policy - how to allow access only from my website?

Question

I have a paperclip text file attachment (in Rails).

My bucket policy is:

{
    \"Version\": \"2008-10-17\",
    \"Id\": \"Policy123\",
    \"Statemen         


        

Answer 1

Bucket policy :

{
    "Version": "2012-10-17",
    "Id": "http referer policy example",
    "Statement": [
        {
            "Sid": "Allow get requests originating from www.example.com and example.com.",
            "Effect": "Allow",
            "Principal": {
                "AWS": "arn:aws:iam::00000000:user/example-user" // IAM User ARN
            },
            "Action": "s3:GetObject",
            "Resource": "arn:aws:s3:::bucket-example/*", // bucket ARN
            "Condition": {
                "StringLike": {
                    "aws:Referer": [
                        "http://example.com/*" // Website link
                    ]
                }
            }
        }
    ]
}