S3 with Cloudfront SignedURL

I am new to Node.js and currently using aws-cloudfront-sign package. It is working on public buckets. But when I am using private folders, it said Access Denied.

var cf = require('aws-cloudfront-sign');
var options = {
  keypairId: KEY,
  privateKeyPath: PATHTOPEMFILE
};

cf.getSignedUrl(CLOUDFRONTURL + directory + file, options);

It return a signedURL but showing Access Denied. What am I doing wrong? Or, is there any other way for S3 with Cloudfront SignedURL. Thanks.

Solution

It sounds like you maybe confusing signed URLs with origin access identities. Based on your description, it sounds like S3 is returning access denied to CloudFront because the folder/bucket is private. I would recommend taking a look at the documentation on configuring origin access identities, OAI.

Create OAI
Associate OAI with distribution
Update S3 bucket policy to grant GetObject to OAI

Invalid options object. Dev Server has been initialized using an options object that does not match the API schema
What is the (smallest) setup to allow import to be used by Jest?
How can the default node version be set using NVM?
Uncaught ReferenceError: Buffer is not defined
How to properly delete data from a table and chain the deletion
How do I test a Node.JS Script that is not a module and runs as soon as it's called?
Testing JavaScript Written for the Browser in Node JS
'You are running version ' + process.version + ' of Node.js, which is not supported by Angular CLI v6
Update BigQuery table with an array of objects where some of the values may be null
Using multer diskStorage with Typescript
Error: Could not resolve various Storybook dependencies with Storybook 8 and PNPM
Do global augmentations need to be imported as a side effect in the consumer?
npm ERR! Refusing to delete / code EEXIST
How to allow ':' character in Node.js Express routes (Google custom methods)
nodemon + express, listen port =?
NextAuth: how to return custom errors without redirection
npm publish fails with GitLab NPM registry
How to end server in VSCode after closing terminal window
AWS SDK file upload to S3 via Node/Express using stream PassThrough - file is always corrupt
Github API is responding with a 403 when using Request's request function
Refactor AWS cdk stack into multiple smaller stacks
"React.Children.only expected to receive a single React element child" error when putting <Image> and <TouchableHighlight> in a <View>
Firestore set doc with merge option true or update doc
node:console test is producing TypeError: Console is not a constructor
setState doesn't update the state immediately
Unknown file extension ".ts" for a TypeScript file
Axios delete method
Re-throwing exception in NodeJS and not losing stack trace
Firebase Functions "cannot determine backend specification"
Cant access Firebase Admin SDK via Node.js on my VPS, but I can on my local machine