CloudFront Signed URLs with Node.js

Generate RSA Key Pair

https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/private-content-trusted-signers.html

Install OpenSSL on your machine and generate the keypairs

openssl genrsa -out private_key.pem 2048
openssl rsa -pubout -in private_key.pem -out public_key.pem

Sign URLs

https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/modules/_aws_sdk_cloudfront_signer.html#getsignedurl

Install and import the cloudfront signer

npm i @aws-sdk/cloudfront-signer

import { getSignedUrl } from "@aws-sdk/cloudfront-signer"

Sign the urls before sending them to the browser

const signedUrl = getSignedUrl({
  keyPairId: process.env.CLOUDFRONT_KEYPAIR_ID,
  privateKey: process.env.CLOUDFRONT_PRIVATE_KEY,
  url: url,
  dateLessThan: new Date( Date.now() + (1000 /*sec*/ * 60))
})

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CloudFrontSignedURL.md

CloudFrontSignedURL.md

CloudFront Signed URLs with Node.js

Generate RSA Key Pair

Sign URLs

Files

CloudFrontSignedURL.md

Latest commit

History

CloudFrontSignedURL.md

File metadata and controls

CloudFront Signed URLs with Node.js

Generate RSA Key Pair

Sign URLs