How can I restrict access to a file on OSS while still allowing download using wget or curl
I have created a large file (disk image) on OSS. I am able to download it with a browser using a hotlink (temporary time limited url). However I am unable to download to another server using wget and curl with the same url (error 403): "you have no right to access this object because of bucket acl".
In this answer: stop oss links from expiring it is stated that setting public or public-read ACL on the object or bucket is the only way to do this. If I do make it public, can I also set up whitelisting for the destination server to prevent others from downloading the file?
Solution
Based on this doc, you can use IP based bucket policy to restrict the access from certain IP addresses.
- Alibaba Cloud Terraform Apply - ErrorCode: RISK.RISK_CONTROL_REJECTION & ErrorCode: Forbidden.RiskControl
- "ValueError: Timezone offset does not match system offset: 28800 != 7200. Please, check your config files."
- How to move local directories to Alibaba Cloud OSS using ossutil tool?
- Regexp instruction in SQL
- Build container image in ACK cluster and push it to ACR with service account token
- Where does Ali Cloud keep a full list of availability zones?
- troubles generating signature for alibaba cloud
- Save DataFrame to CSV or Text to Alicloud OSS
- DTS task failed, DTS-077100: Record Replicator error in table asyncprocess.outgoing_bot. cause by jdbc Operation failed
- Failed to connect to cc-clickhouse.ads.aliyuncs.com port 8443: Operation timed out
- How can I get the account ID number programmatically with Aliyun Python SDK?
- How to bulk upload Recipient lists in Alibaba Cloud Direct Mail?
- Ruby on Rails can't load after deploy to Alibaba ECS
- Migrate CyberPanel with everything to a new CyberPanel on different VPS
- How do I install the "sparse_dot_topn" Package in Anaconda Installer?
- Public DNS (IPv4) on alibaba cloud as use for other clouds?
- Cross Account access in Alibaba Cloud
- I just Need to create centralized DNS/LDAP for 3 cloud provider AWS, GCP, Alibaba
- Error creating bean with name 'projectController': Unsatisfied dependency expressed through field 'service';
- Alibaba ActionTrail records disappearing
- Alibaba Cloud third party firewall scenario can you guide
- How can I restrict access to a file on OSS while still allowing download using wget or curl
- Terraform / alicloud : create an ECS instance with multiple data disks
- Cannot ping alibaba ECS instance
- Getting Subscription and PayAsYouGo prices for Alibaba products using API/SDK
- Does Alibaba Cloud support Text Transcribe?
- Alibaba Cloud - Kubernetes to RDS how to limit whitelist?
- How to access MERN application deployed to alibaba cloud in the browser
- Public DNS (IPv4) on alibaba
- Alibaba ACP question about CDN(NEED EXPLAIN)