Improve Security with OAC

With the current set up, the S3 bucket is public. So, anybody can directly come and view the content. In this lab, we will:

  • Remove anonymous access and allow only request from CloudFront.
  • Grant CloudFront distribution permission to read the S3 origin

Delete Bucket policy from the S3 bucket and block public access.

Content: