aws-cloudfront-s3 module
All classes are under active development and subject to non-backward compatible changes or removal in any
future version. These are not subject to the Semantic Versioning model.
This means that while you may use them, you may need to update your source code when upgrading to a newer version of this package.
Language | Package |
---|
Python | aws_solutions_constructs.aws_cloudfront_s3 |
Typescript | @aws-solutions-constructs/aws-cloudfront-s3 |
Java | software.amazon.awsconstructs.services.cloudfronts3 |
This AWS Solutions Construct implements an AWS CloudFront fronting an AWS S3 Bucket.
Here is a minimal deployable pattern definition:
const { CloudFrontToS3 } = require('@aws-solutions-constructs/aws-cloudfront-s3');
new CloudFrontToS3(stack, 'test-cloudfront-s3', {
deployBucket: true
});
Initializer
new CloudFrontToS3(scope: Construct, id: string, props: CloudFrontToS3Props);
Parameters
Pattern Construct Props
Name | Type | Description |
---|
deployBucket | boolean | Whether to create a S3 Bucket or use an existing S3 Bucket |
existingBucketObj? | s3.Bucket | Existing instance of S3 Bucket object |
bucketProps? | s3.BucketProps | Optional user provided props to override the default props for S3 Bucket |
cloudFrontDistributionProps? | cloudfront.CloudFrontWebDistributionProps | Optional user provided props to override the default props for CloudFront Distribution |
insertHttpSecurityHeaders? | boolean | Optional user provided props to turn on/off the automatic injection of best practice HTTP security headers in all responses from CloudFront |
Pattern Properties
Name | Type | Description |
---|
cloudFrontWebDistribution | cloudfront.CloudFrontWebDistribution | Returns an instance of cloudfront.CloudFrontWebDistribution created by the construct |
s3Bucket | s3.Bucket | Returns an instance of s3.Bucket created by the construct |
Default settings
Out of the box implementation of the Construct without any override will set the following defaults:
Amazon CloudFront
- Configure Access logging for CloudFront WebDistribution
- Enable automatic injection of best practice HTTP security headers in all responses from CloudFront WebDistribution
Amazon S3 Bucket
- Configure Access logging for S3 Bucket
- Enable server-side encryption for S3 Bucket using AWS managed KMS Key
- Turn on the versioning for S3 Bucket
- Don't allow public access for S3 Bucket
- Retain the S3 Bucket when deleting the CloudFormation stack
Architecture
© Copyright 2019 Amazon.com, Inc. or its affiliates. All Rights Reserved.