Redirect https to http

Question

I have used CloudFront to associate my domain mistergnu.uk to the S3 endpoint https://s3.eu-west-2.amazonaws.com/mistergnu.uk/index.html. It will only work if I type http://mistergnu.uk - if I type mistergnu.uk it reverts to https://mistergnu.uk which will not load.

I have searched for answers to this but I can't find anything that works. I have also tried requesting a security certificate in case that has any bearing, but I can't verify the certificate - I've tried requesting this by email but I cannot enter my email address and I don't have an AWS one set up.

An answer here (https://repost.aws/questions/QUPxQQNielSAW5y-a9REm4XA/endpoint-does-not-work-because-of-https-redirect) directs me to use AWS Amplify, but my static website is not shown as an app. If I go to Host your web app it asks me to select GitHub, Bitbucket and so on - I'm not using any of these with my static webpage. I have a GitHub account but there are no repositories in it and I don't know what 'push a commit' means.

It all seems very complicated for what should be something simple. All I want is for my S3 endpoint (as above) to show up when I type mistergnu.uk in the address bar.

I have looked at all suggested answers when posting my question. Much mention is made of load balancers and more of AWS Amplify, but again this all seems horribly complicated and way beyond my technical experience. Surely there must be a way to do this simply?

Clearly my ignorance is vast. Can anyone help?

Answer

Can you access it via it's .cloudfront.net URL?

Can you create new CloudFront distribution with the following settings?
* Origin domain: s3.eu-west-2.amazonaws.com
* Protocol: HTTPS only
* Origin path: /mistergnu.uk
* Default root object: index.html

To associate it with your domain `http://mistergnu.uk`, you need to add [Alternate domain name (CNAME)](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/CNAMEs.html#CreatingCNAME) to your CloudFront distribution with value of `mistergnu.uk`.

This is in addition to create Route 53 alias record to CloudFront FQDN. Refer to [Configuring Amazon Route 53 to route traffic to a CloudFront distribution](https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/routing-to-cloudfront-distribution.html#routing-to-cloudfront-distribution-config).

Screenshot below for illustration. Go to CloudFront console to get actual .cloudfront.net value
![Enter image description here](/media/postImages/original/IMM_fMiIoJRIisWteJvtd7_g)

For SSL/TLS cert, you can go to Certificate Manager in [us-east-1 Region](https://us-east-1.console.aws.amazon.com/acm/home?region=us-east-1#/certificates/list) and [request a public cert](https://docs.aws.amazon.com/acm/latest/userguide/gs-acm-request-public.html) using [DNS validation](https://docs.aws.amazon.com/acm/latest/userguide/dns-validation.html).  It should be fairly seamless as your DNS hosting is on Route 53. You can enter `mistergnu.uk` and `*.mistergnu.uk` as the FQDN(Fully qualified domain name ) to request

Answer

Hello.

If you simply want to host a static website on S3, you should be able to solve it by just configuring CloudFront and S3.  
The following documents should be helpful.  
https://repost.aws/knowledge-center/cloudfront-serve-static-website  
https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/private-content-restricting-access-to-s3.html

Also, to issue an SSL certificate to CloudFront with ACM, you need to issue the certificate in the "us-east-1" region.  
https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/cnames-and-https-requirements.html

Redirect https to http

関連するコンテンツ