Securely Hosting Your Website with Amazon S3 and CloudFront

AshwinAshwin
2 min read

We will walk through the steps to securely host a static website using Amazon S3 for storage and Amazon CloudFront for content delivery. By using CloudFront, we can ensure secure and faster access to our website without making the S3 objects public.

Step 1: Create an S3 Bucket

  1. Log in to the AWS Management Console.

  2. Navigate to the S3 service.

  3. Click the "Create bucket" button.

  4. Provide a unique and meaningful name for your bucket, and leave all other settings as default. Click "Create bucket."

Step 2: Upload Your Files to S3

  1. Select your newly created bucket.

  2. Click the "Upload" button.

  3. Choose the HTML file and any images you want to upload.

  4. Click "Upload" to upload the files.

Step 3: Verify Access Denied

If you try to access the HTML file directly from the S3 object URL, you will receive an access denied error since the objects are not public.

Step 4: Create a CloudFront Distribution

  1. Navigate to the CloudFront service in the AWS Management Console.

  2. Click the "Create Distribution" button.

  3. In "Origin Domain", choose the S3 bucket created in Step 1.

  4. In "Origin Access," select "Origin access control settings", and create a control setting.

  5. In WAF, choose "Do not enable security protections".

  6. In "Default Root Object," enter 'index.html.'

  7. Click "Create Distribution." This process may take some time.

Step 5: Set Up Origin Access Control

  1. While the CloudFront distribution is being created, click on 'Copy Policy".

  2. Go back to your S3 bucket in the AWS Management Console.

  3. Navigate to the "Permissions" tab and click on "Bucket Policy."

  4. Edit the bucket policy and paste the policy that you copied to grant CloudFront access to the S3 objects.

  5. Save the bucket policy.

Step 6: Access Your Website Using CloudFront

  1. Once the CloudFront distribution is created (check the status in the CloudFront console), copy the provided Distribution Domain Name.

  2. Paste the Distribution Domain Name into a browser to access your website securely.

If you reload the page, you will notice faster loading times for images due to CloudFront caching. CloudFront stores images in its edge locations, making subsequent retrievals quicker.

We have set up a secure and efficient static website using Amazon S3 and CloudFront. The use of CloudFront's edge locations enhances the loading speed of your website's images upon reloads.

0
Subscribe to my newsletter

Read articles from Ashwin directly inside your inbox. Subscribe to the newsletter, and don't miss out.

S3cloudfront

Written by

Ashwin
Ashwin

I'm a DevOps magician, conjuring automation spells and banishing manual headaches. With Jenkins, Docker, and Kubernetes in my toolkit, I turn deployment chaos into a comedy show. Let's sprinkle some DevOps magic and watch the sparks fly!