Currently the package would grant every object uploaded to the target with read access. Whilst in most cases this is sufficient for public websites, it might not be secure enough for web applications. With this change, now1 we can choose whether an object should be publicly available after uploading. If not public available, with an AWS SignedCookie or SignedUrl we can still grant read access to users that have successfully logged in into your own web application. Any person not logged in and getting their hands on the URL won't be able to download the file.
Currently the package would grant every object uploaded to the target with read access. Whilst in most cases this is sufficient for public websites, it might not be secure enough for web applications. With this change, now1 we can choose whether an object should be publicly available after uploading. If not public available, with an AWS SignedCookie or SignedUrl we can still grant read access to users that have successfully logged in into your own web application. Any person not logged in and getting their hands on the URL won't be able to download the file.