Difference between revisions of "Terraform resource: aws cloudfront distribution"

Latest revision as of 16:33, 31 October 2024

aws_cloudfront_distribution ^[1] terraform resource.

Required:

origin_id (Required) - Unique identifier for the origin
origin: domain_name, origin_id
enabled
default_cache_behavior: cache_policy_id
restrictions
viewer_certificate

Optional:

aliases (optional) - Extra CNAMEs (alternate domain names), if any, for this distribution.
origin_access_control_id (Optional)
headers

Official example[edit]

resource "aws_s3_bucket" "b" {
  bucket = "mybucket"

  tags = {
    Name = "My bucket"
  }
}

resource "aws_s3_bucket_acl" "b_acl" {
  bucket = aws_s3_bucket.b.id
  acl    = "private"
}

locals {
  s3_origin_id = "myS3Origin"
}

resource "aws_cloudfront_distribution" "s3_distribution" {
  origin {
    domain_name              = aws_s3_bucket.b.bucket_regional_domain_name
    origin_access_control_id = aws_cloudfront_origin_access_control.default.id
    origin_id                = local.s3_origin_id
  }

  enabled             = true
  is_ipv6_enabled     = true
  comment             = "Some comment"
  default_root_object = "index.html" 

  logging_config {
    include_cookies = false
    bucket          = "mylogs.s3.amazonaws.com"
    prefix          = "myprefix"
  }

  aliases = ["mysite.example.com", "yoursite.example.com"]

  default_cache_behavior {
    allowed_methods  = ["DELETE", "GET", "HEAD", "OPTIONS", "PATCH", "POST", "PUT"]
    cached_methods   = ["GET", "HEAD"]
    target_origin_id = local.s3_origin_id

    forwarded_values {
      query_string = false 

      cookies {
        forward = "none"
      }
    }

    viewer_protocol_policy = "allow-all"
    min_ttl                = 0
    default_ttl            = 3600
    max_ttl                = 86400
  }

  # Cache behavior with precedence 0
  ordered_cache_behavior {
    path_pattern     = "/content/immutable/*"
    allowed_methods  = ["GET", "HEAD", "OPTIONS"]
    cached_methods   = ["GET", "HEAD", "OPTIONS"]
    target_origin_id = local.s3_origin_id

    forwarded_values {
      query_string = false
      headers      = ["Origin"] 

      cookies {
        forward = "none"
      }
    }

    min_ttl                = 0
    default_ttl            = 86400
    max_ttl                = 31536000
    compress               = true
    viewer_protocol_policy = "redirect-to-https"
  }

  # Cache behavior with precedence 1
   ordered_cache_behavior {
    path_pattern     = "/content/*"
    allowed_methods  = ["GET", "HEAD", "OPTIONS"]
    cached_methods   = ["GET", "HEAD"]
    target_origin_id = local.s3_origin_id 

    forwarded_values {
      query_string = false

      cookies {
        forward = "none"
      }
    }

    min_ttl                = 0
    default_ttl            = 3600
    max_ttl                = 86400
    compress               = true
    viewer_protocol_policy = "redirect-to-https"
  }

  price_class = "PriceClass_200"

  restrictions {
    geo_restriction {
      restriction_type = "whitelist"
      locations        = ["US", "CA", "GB", "DE"]
    }
  }

  tags = {
    Environment = "production"
  }

  viewer_certificate {
    cloudfront_default_certificate = true
  }
}

Import[edit]

terraform import aws_cloudfront_distribution.distribution E74FTE3EXAMPLE

trusted_key_groups

Related terms[edit]

Activities[edit]

How do I use CloudFront to serve HTTPS requests for my Amazon S3 bucket?

@@ Line 1: / Line 1: @@
-* <code>[[aws_cloudfront_distribution]]</code> <ref>https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/cloudfront_distribution</ref>
+<code>[[aws_cloudfront_distribution]]</code> <ref>https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/cloudfront_distribution</ref> terraform resource.
+Required:
+* <code>[[origin_id]]</code> (Required) - Unique identifier for the origin
+* <code>[[origin argument in aws_cloudfront_distribution resource|origin]]: [[domain_name]], [[origin_id]]</code>
+* <code>[[enabled]]</code>
+* <code>[[default_cache_behavior]]</code>: <code>[[cache_policy_id]]</code>
+* <code>[[restrictions]]</code>
+* <code>[[viewer_certificate]]</code>
+Optional:
+* <code>[[aliases]]</code> (optional) - Extra [[CNAMEs]] (alternate domain names), if any, for this distribution.
+* <code>[[origin_access_control_id]]</code> (Optional)
+* <code>[[headers]]</code>
 == Official example ==
@@ Line 6: / Line 19: @@
+== Import ==
+* <code>[[terraform import]] aws_cloudfront_distribution.distribution E74FTE3EXAMPLE</code>
 * <code>[[trusted_key_groups]]</code>
 == Related terms ==
+* <code>[[aws cloudfront get-distribution-config]]</code>
 * <code>[[aws cloudfront origin access identity]]</code>
-* [[InvalidViewerCertificate]]
+* <code>[[InvalidViewerCertificate]]</code>
+* <code>[[aws cloudfront create-distribution]]</code>
+* [[Terraform resource: aws cloudfront origin access control]]
+* <code>[[AWS::CloudFront::Distribution]]</code>
+* [[CORS]]
+* <code>[[aws_acm_certificate_validation]]</code>
+* <code>[[aws_route53_record]]</code>
+== Activities ==
 * [[How do I use CloudFront to serve HTTPS requests for my Amazon S3 bucket?]]
 == See also ==
+* {{aws_cloudfront_distribution}}
 * {{Terraform CloudFront}}
-* {{terraform aws resources}}
 [[Category:Terraform]]
+[[Category:CloudFront]]
 [[Category:AWS]]

Difference between revisions of "Terraform resource: aws cloudfront distribution"

Latest revision as of 16:33, 31 October 2024

Contents

Official example[edit]

Import[edit]

Related terms[edit]

Activities[edit]

See also[edit]

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Tools