Prevent anons from downloading files on S3



I am trying to figure out if there is a way to utilize the setting prevent anons from downloading files with S3. Is there a way to currently use an auth’ed acceess url to S3 when clicked? Right now I am seeing a direct CDN link to the attachment both in the Topic on the site, and in the email notification. Is there a way to fix this?