Amazon S3 supports URLs signed with an API key that permit time-limited
access to a normally private resource. Add a "signurl" command to s3cmd
that generates such URLs.
Usage: s3cmd signurl s3://bucket/object `date -d '1 year' +%s`
ie: s3cmd signurl url-to-sign expiry-in-epoch-seconds
This is a purely offline operation. Your API key and secret are not sent on
the wire. Your API key is included the generated URL, but your secret is of course
No validation of the URL against S3 is performed, since this is an offline-only
operation. Use s3cmd ls or similar to test for valid objects if you need to.
The URL generated is http:// but you can simply change to https:// if you want.
For more information on signed URLs, see: