search

quixoticmonk / aws-iac-patterns

AWS Infrastructure-as-Code Pattern Library
GNU General Public License v3.0
1 stars 2 forks source link

Idea: Well-Architected Single Page Application #8

Open troydieter opened 2 years ago

troydieter commented 2 years ago

Deployment of an AWS Well-Architected Single Page Application, includes:

  1. Amazon S3 Bucket (Private, restricted through OAI only - Bucket Policy defined)
  2. OAI (Origin Access Identity) - used for CloudFront to authenticate as a trusted source
  3. Amazon CloudFront Distribution
  4. ACM Certificate bound to CloudFront Distribution
  5. Any applicable subject alternative names (used in conjunction with ACM)
  6. Lambda@Edge function deployed, bound to default behavior to handle index.html handling
troydieter commented 2 years ago

Additional enhancements could include:

  1. AWS WAF implementation
  2. Right-sized CloudWatch logging and retention
  3. Origin Shield additional settings