I run a WordPress site that serves members-only videos stored in an Amazon S3 bucket. Right now the files can be downloaded or hot-linked if someone discovers the object URL, so I need a hardened delivery setup that keeps the content stream-only and locked to my pages. I’m open to whichever mix of controls makes most sense—signed or tokenized URLs, CloudFront with Origin Access Control, IP limits, HLS encryption—so long as the result is that visitors can watch the video in my embedded player, but can’t download it, share the link, or embed it elsewhere. What you’ll hand over: • A working configuration in my AWS account that protects the S3 objects and delivers them efficiently to WordPress • Integration instructions or lightweight plugin tweaks on the WordPress side so I can attach protected videos to posts without touching code each time • Clear documentation of the steps you took and how to adjust expiry times, revoke tokens, or add new videos in the future If you’ve done similar S3-to-WordPress secured streaming before, I’d love to see a quick reference or demo link.