Secure https site on S3 without CloudFront

0

Is it possible to have a secure (https) site hosted on S3 without CloudFront? I am using AWS GovCloud, and CloudFront is not a service available to me, nor can I use the commercially available CloudFront. I need to find other methods that allow me to have an https site that can reach out to an authenticator. What services can I use to accomplish this? Do I use a VPN?

1 réponse
1

You can follow the model described in this blog - https://aws.amazon.com/blogs/networking-and-content-delivery/hosting-internal-https-static-websites-with-alb-s3-and-privatelink/ From your question it isn't clear if it is a public website, but if it is you can tweak the blog to use a public ALB and if it isn't you would need direct connect or VPN to access the private website.

AWS
EXPERT
répondu il y a un an
  • Users will need to authenticate themselves in the GovCloud before they can access the website content, I'm not sure if that classifies it as public or not. According to that model, can you elaborate on why I would need an EC2 instance to access the website? I want to be able to go to a secure link, authenticate myself, and then gain access to the site.

  • Amazon S3 website endpoints do not support HTTPS. - https://docs.aws.amazon.com/AmazonS3/latest/userguide/WebsiteHosting.html Since you require Https you need something to terminate the https connection before routing the request to S3. This is generally done via cloudfront, but with that not being an option in your environment the ALB becomes the next best option.

Vous n'êtes pas connecté. Se connecter pour publier une réponse.

Une bonne réponse répond clairement à la question, contient des commentaires constructifs et encourage le développement professionnel de la personne qui pose la question.

Instructions pour répondre aux questions