Installation guide

ManualsBrandsAmazon ManualsComputer equipmentAWS SDK

'url' => $streamHostUrl . '/' . $resourceKey,

'expires' => $expires,

));

For versions of the SDK later than 2.3.1, instead of providing your private key information when you instantiate the

client, you can provide it at the time when you sign the URL.

$signedUrlCannedPolicy = $cloudFront->getSignedUrl(array(

'url' => $streamHostUrl . '/' . $resourceKey,

'expires' => $expires,

'private_key' => '/path/to/your/cloudfront-private-key.pem',

'key_pair_id' => '<cloudfront key pair id>'

));

To use a custom policy, provide the policy key instead of expires.

$customPolicy = <<<POLICY

{

"Statement": [

{

"Resource": "{$resourceKey}",

"Condition": {

"IpAddress": {"AWS:SourceIp": "{$_SERVER['REMOTE_ADDR']}/32"},

"DateLessThan": {"AWS:EpochTime": {$expires}}

}

]

}

POLICY;

// Create a signed URL for the resource using a custom policy

$signedUrlCustomPolicy = $cloudFront->getSignedUrl(array(

'url' => $streamHostUrl . '/' . $resourceKey,

'policy' => $customPolicy,

));

The form of the signed URL is actually different depending on if the URL you are signing is using the "http" or "rtmp"

scheme. In the case of "http", the full, absolute URL is returned. For "rtmp", only the relative URL is returned for your

convenience, because some players require the host and path to be provided as separate parameters.

The following is an example of how you could use the signed URL to construct a web page displaying a video using

JWPlayer. The same type of technique would apply to other players like FlowPlayer, but will require different

client-side code.

<html>

<head>

<title>Amazon CloudFront Streaming Example</title>

</head>

<body>

<div id="video">The canned policy video will be here.</div>

jwplayer('video').setup({

file: "<?= $streamHostUrl ?>/cfx/st/<?= $signedUrlCannedPolicy ?>",

width: "720",

height: "480"

});

</script>

</body>

</html>

Amazon CloudFront (2012-05-05)