Secure https site on S3 without CloudFront

0

Is it possible to have a secure (https) site hosted on S3 without CloudFront? I am using AWS GovCloud, and CloudFront is not a service available to me, nor can I use the commercially available CloudFront. I need to find other methods that allow me to have an https site that can reach out to an authenticator. What services can I use to accomplish this? Do I use a VPN?

1 Antwort
1

You can follow the model described in this blog - https://aws.amazon.com/blogs/networking-and-content-delivery/hosting-internal-https-static-websites-with-alb-s3-and-privatelink/ From your question it isn't clear if it is a public website, but if it is you can tweak the blog to use a public ALB and if it isn't you would need direct connect or VPN to access the private website.

AWS
EXPERTE
beantwortet vor einem Jahr
  • Users will need to authenticate themselves in the GovCloud before they can access the website content, I'm not sure if that classifies it as public or not. According to that model, can you elaborate on why I would need an EC2 instance to access the website? I want to be able to go to a secure link, authenticate myself, and then gain access to the site.

  • Amazon S3 website endpoints do not support HTTPS. - https://docs.aws.amazon.com/AmazonS3/latest/userguide/WebsiteHosting.html Since you require Https you need something to terminate the https connection before routing the request to S3. This is generally done via cloudfront, but with that not being an option in your environment the ALB becomes the next best option.

Du bist nicht angemeldet. Anmelden um eine Antwort zu veröffentlichen.

Eine gute Antwort beantwortet die Frage klar, gibt konstruktives Feedback und fördert die berufliche Weiterentwicklung des Fragenstellers.

Richtlinien für die Beantwortung von Fragen