Practice free →
HomeAWS Developer Associatecloudcomputingawsdevsecurity › A static website served from S3 must allow time-…

A static website served from S3 must allow time-limited downloads to authenticated users without making the bucket public. Which AWS mechanism is BEST?

AMake the bucket public for everyone
BMigrate the bucket to Glacier Deep Archive
CEmail the bucket owner's IAM access key to each user
DPre-signed URLs generated by the app's backend
Answer & Solution
Correct answer: D. Pre-signed URLs generated by the app's backend
Pre-signed URLs grant time-limited GET (or PUT) access to a specific object using the signer's credentials — exactly the time-boxed access pattern. The others either expose data or destroy the workflow.
Solve this in the app — AWS Developer Associate practice & 24k+ MCQs →
Related questions