Project

cloud_front_signing

0.0
Repository is archived
No commit activity in last 3 years
No release in over 3 years
cloud_front_signingronny/cloud_front_signingHomepageDocumentationSource CodeBug TrackerWiki
Generate AWS CloudFront signed URLs.
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
 Popularity
Downloads
8,135
Stars
0
Forks
0
Watchers
2
 Releases
Current version
0.0.3
Total releases
3
First release
2015-01-29
Latest release
2017-12-16
 Pull Requests
Open Pull Requests
0
Closed Pull Requests
0
Merged Pull Requests
1
Pull Request Acceptance Rate
100%
 Development
Primary Language
Ruby
Licenses
MIT
Average date of last 50 commits
2016-09-21
Reverse Dependencies
0

 Dependencies

Development

bundler
~> 1.7
pry
~> 0.10.1
rake
~> 10.0
rspec
~> 3.1.0

Runtime

addressable
~> 2.3.6
yajl-ruby
~> 1.3.1
 Project Readme

STATUS

Use http://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/CloudFront/UrlSigner.html instead. I don't plan to maintain this gem any more.

CloudFrontSigning

Sign AWS CloudFront URLs.

Installation

Add this line to your application's Gemfile:

gem 'cloud_front_signing'

And then execute:

$ bundle

Or install it yourself as:

$ gem install cloud_front_signing

Usage

# Replace these for your specific AWS account/CloudFront configuration
private_key_string = IO.read("path/to/pk-123456789012.pem")
key_pair_id = "123456789012"

signer = CloudFrontSigning::Signer.new(private_key_string, key_pair_id)

unsigned_url = "https://distribution-id.cloudfront.net/private.zip"
options = {ending: 1.hour.from_now} # or, e.g. `Time.now + 3600` if you don't have activesupport
signed_url = signer.sign(unsigned_url, options)

Valid options:

  • ending: required, the signed URL will only be accessible until this time, a Time object or a String parseable by Time.parse
  • resource: the base URL including your query strings, if any, but excluding the CloudFront Policy, Signature, and Key-Pair-Id parameters, uses unsigned_url by default
  • starting: the signed URL will only be accessible after this time, a Time object or a String parseable by Time.parse
  • ip_range: the signed URL will only be accessible by IP addresses in this range, a CIDR string, e.g. 10.1.2.3/32, 10.2.3.0/24, and so on.

Specifying starting and/or ip_range will cause the signed URL to include a custom policy which is longer.

Credits

Code adapted from https://github.com/dylanvaughn/aws_cf_signer by Dylan Vaughn.

Parts of signing code taken from a question on Stack Overflow asked by Ben Wiseley, and answered by Blaz Lipuscek and Manual M:

http://stackoverflow.com/questions/2632457/create-signed-urls-for-cloudfront-with-ruby http://stackoverflow.com/users/315829/ben-wiseley http://stackoverflow.com/users/267804/blaz-lipuscek http://stackoverflow.com/users/327914/manuel-m

References

AWS documentation on private content and signed URLs

License

MIT. See LICENSE.txt.

Contributing

  1. Fork it ( https://github.com/[my-github-username]/cloud_front_signing/fork )
  2. Create your feature branch (git checkout -b my-new-feature)
  3. Commit your changes (git commit -am 'Add some feature')
  4. Push to the branch (git push origin my-new-feature)
  5. Create a new Pull Request