AWS Certified Solutions Architect Associate SAA-C03 Practice Question
A company is building a mobile application that allows users to upload photos directly to Amazon S3. The application should authenticate users using their existing social media accounts and securely grant them permissions to upload files to a protected S3 bucket, without routing the uploads through the application backend. Which solution meets these requirements?
Configure Amazon S3 bucket policies to allow public write access and require users to include a secret access key with their uploads.
Create IAM user credentials for each application user and provide them with individual access keys for S3 uploads.
Use AWS Cognito service which handles authentication with social identity providers and provides temporary credentials for direct Amazon S3 access.
Implement an AWS Lambda function to authenticate users via social identity providers and generate presigned URLs for S3 uploads.