torus-tools / stack

Deploy static websites to the AWS Cloud using a single command.

Restrict Access to S3 Content with an OAI in Cloudfront

lucaskardo opened this issue 4 years ago · comments

lucas kardonski commented 4 years ago

It's a better practice to route all traffic trough Cloudfront Origins and avoid exposing the S3 bucket to the public.

https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/private-content-restricting-access-to-s3.html