Is there a good way to limit the permissions on cloudfront? I appreciate that there are limited permissions for s3 listed in the setting-up-aws-credentials.md file, but I'm wondering if cloudfront can be similarly limited since with full access to cloudfront any other website could also be hijacked were the credentials lost as opposed to just the website managed with s3_website.
Is there a good way to limit the permissions on cloudfront? I appreciate that there are limited permissions for s3 listed in the
setting-up-aws-credentials.mdfile, but I'm wondering if cloudfront can be similarly limited since with full access to cloudfront any other website could also be hijacked were the credentials lost as opposed to just the website managed with s3_website.