Comments
By Roger Strukhoff
Richard Davies wrote: The UK has a good crop of technology pioneers in cloud computing - for example ElasticHosts, FlexiScale, Flexiant, OnApp - and also some strong government initiatives such as G-Cloud. We will have to see whether this kind of technical leadership converts into swift mass-market adoption or not.
Jan. 8, 2012 11:38 AM EST
Cloud Computing
Conference & Expo
November 2-4, 2009 NYC
Register Today and SAVE !..
Did you read today's front page stories & breaking news?
SYS-CON.TV: Eclipse Adds SOA, AJAX, and Flex Tools. Guests Mike Milinkovich and Mike Tylor
SYS-CON.TV
SYS-CON.TV Webcasts
Jackbe: The Big A(architecture in AJAX)
Instantiations: Eclipse Rich Internet Platform with Taylor and Milinkovich
Yahoo!: Applying AJAX to Speed User's Journey
Enerjy Webcast: Java Code Quality Management
App Server Shoot-out: Microsoft, IBM, JBoss, Sun, BEA, and Oracle
News Desk
How to generate CloudFront Private URLs using Canned Policy
Apparently CloudFront private content configuration is not straight forward and involves many steps

By: Alexandra Brown
Nov. 18, 2009 12:24 PM

Cloud Computing on Ulitzer

Note: this post applies to CloudBerry Explorer 1.6.5 and later.

This is a second article related to CloudFront Private Content feature that allows you restrict the access to your content. Apparently CloudFront private content configuration is not straight forward and involves many steps as described in our previous post. You have to configure your distribution to support private content, generate keys, create policies and finally sign URLs. CloudFront users wanted something simple similar to Amazon S3 Query String authentication.

Coming Canned Policies
CloudFront team have been quick to react on user feedback and introduced so called Canned Policies. Canned Policies unlike Custom Policies are generated automatically, depending on the resource you want to generate the signed URL for and the expiration time. In this case the expiration time is passed as a query string parameter in the URL:
http://mycloudront.com/folder/file1.jpg?Expire=1258247342

Creating Canned Policies with CloudBerry Explorer
First, you have to create the canned policy. Got to Tools | Policies in the program menu to open Add New Policy dialog. Choose Canned Policy as shown on the screen. See how IP Range and Resource Mask fields become disabled.

Specify Private Key file and Key pair ID. Click ok to create the canned policy.

Note: Amazon CloudFront checks the signature with a public key that is stored in Amazon (it can be uploaded if you use your own private key, or created by Amazon if you use Amazon's key generator). For Amazon to know with which key it should check the signature, the Key Pair Id is passed in the URL as a parameter.

Generating URLs using a Canned Policy
There is nothing new to Generate Web URL dialog. It is just that you have to choose the canned policy in the list.

Note: The policy is placed in WebURL as a query parameter (url-safe Base64-encoded). Only accounts set up as a Trusted Signer for a distribution can sign the Policy. Otherwise the signed URL will not be valid.

What's next
We are going to make it even easier to generate protected URLs using Canned Policies in the future release. You won't have to create a canned policy separately and you will be able to generate URL right on the Web URL screen. Stay tuned!

Read the original blog entry...

Published Nov. 18, 2009— Reads 3,846
Copyright © 2009 SYS-CON Media, Inc. — All Rights Reserved.
Syndicated stories and blog feeds, all rights reserved by the author.
About Alexandra Brown
Marketing Manager at CloudBerry Lab, the company that specialize on tool that makes Cloud Computing adoption easier. CloudBerry Lab is established in 2008 by a group of experienced IT professionals with the mission to help organization in adopting Cloud computing technologies by closing the gap between Cloud vendors propositions and consumer needs through development of innovative low costs solutions.

Subscribe to the World's Most Powerful Newsletters
Subscribe to Our Rss Feeds & Get Your SYS-CON News Live!
Click to Add our RSS Feeds to the Service of Your Choice:
Google Reader or Homepage Add to My Yahoo! Subscribe with Bloglines Subscribe in NewsGator Online
myFeedster Add to My AOL Subscribe in Rojo Add 'Hugg' to Newsburst from CNET News.com Kinja Digest View Additional SYS-CON Feeds
Publish Your Article! Please send it to editorial(at)sys-con.com!

Advertise on this site! Contact advertising(at)sys-con.com! 201 802-3021

SYS-CON Featured Whitepapers
Most Read This Week
By Jeremy Geelan
By Bob Hockman
By Brian McCallion
By Jeremy Geelan
By Steven Yaskin
By Jeremy Geelan
By Udayan Banerjee
By Jeremy Hess
By Udayan Banerjee
By Maureen O'Gara
By Liz McMillan
By Hollis Tibbetts
ADS BY GOOGLE