Menu
I have a custom redirection rule for my bucket on S3:
<RoutingRules>
<RoutingRule>
<Condition>
<KeyPrefixEquals/>
<HttpErrorCodeReturnedEquals>404</HttpErrorCodeReturnedEquals>
</Condition>
<Redirect>
<Protocol>https</Protocol>
<HostName>example2.com</HostName>
<ReplaceKeyPrefixWith>services/create?key=</ReplaceKeyPrefixWith>
<HttpRedirectCode>307</HttpRedirectCode>
</Redirect>
</RoutingRule>
</RoutingRules>
And my bucket has a proper policy:
{
"Version": "2008-10-17",
"Statement": [
{
"Sid": "PublicReadForGetBucketObjects",
"Effect": "Allow",
"Principal": {
"AWS": "*"
},
"Action": "s3:GetObject",
"Resource": "arn:aws:s3:::example.com/*"
}
]
}
This works fine when I access it via its internal url http://example.com.s3-website-us-east-1.amazonaws.com and it redirects me to my other server properly.
However, it doesn't work with my CloudFront setup. When I try to access it directly (http://example.com/images/dummy.jpg), I receive a 403 AccessDenied.
856
Apparently, when using the default S3 bucket as the origin - it won't respect the redirection rules.
By default, it tries to use:
example.com.s3.amazonaws.com, but you should force it to a custom origin:
example.com.s3-website-us-east-1.amazonaws.com instead.
Once I forced it, it started to work.
97
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With