Getting started with a secure static website

[jmattgiroux]

Tutorial here

[jmattgiroux]

Got domain name through Route 53, currently pending: jared-secure-static-website-tutorial.link

[jmattgiroux]

Added permissions to my IAM user account (AWSCloudFormationFullAccess)

[jmattgiroux]

Started the stack creation process (view progress here)

View Domain Registration Progress here

[jmattgiroux]

Domain is now registered (faster than expected):

[jmattgiroux]

The first stack I tried to create encountered an issue due to certificate stuff. This time the domain is already finished registering, and I've specified the Hosted Zone ID (which wasn't mentioned in the instructions, but shouldn't cause issues) and so hopefully it will work this time.

[jmattgiroux]

While the stack is loading, I'll read about Amazon CloudFront

[jmattgiroux]

Success:

[jmattgiroux]

Changed Text in index.html to test making changes to a website. I then had the stack update However, the content showing up is still the same as before; it's probably cached in the edge location.

It should update within 24 hours, or after the stack updates again. I had the stack detect drift, which seemed to have triggered another update to the stack

[jmattgiroux]

Nevermind, the drift detection didn't get any results (maybe certain items need to be flagged for drift protection to check on them) and the update didn't result in the displayed website changing. I'll check tomorrow.

[jmattgiroux]

It did finally work:

[jmattgiroux]

Someone else encountered the rollback issue when creating their stack for cloud-formation. I confirmed that their domain on Route53 was finished setting up, and advised them to try creating a new stack with the HostZoneID filled out when creating it.

[jmattgiroux]

Here's the issue we're trying to figure out:

Earlier:

Later:

[jmattgiroux]

Is the issue whether Route53's domain name is global or a public hosted zone?

We're basically trying to find the difference between my set up and my colleague's set up.

Compare the templates for the cloudFormation too 🤷‍♂️

[jmattgiroux]

Can you change a Route53 domain to be a private hosted zone? If so, where? No, it seems like you can just create a new hosted zone that has that change

[jmattgiroux]

Possible issue was my colleague's route53 Domain had an "A" type record set to an s3..... domain, while mine was some ...cloudfront... domain.

We deleted their public host zone, and created a new one with their domain name, which just had the two SOA and NS records. Hopefully the A type record will automatically by added by Amazon during the CloudFormation stack creation process. We also started the cloudFormation stack creation process, using the new host zone id.

My Public Host Zone: