Secure https site on S3 without CloudFront

0

Is it possible to have a secure (https) site hosted on S3 without CloudFront? I am using AWS GovCloud, and CloudFront is not a service available to me, nor can I use the commercially available CloudFront. I need to find other methods that allow me to have an https site that can reach out to an authenticator. What services can I use to accomplish this? Do I use a VPN?

1回答
1

You can follow the model described in this blog - https://aws.amazon.com/blogs/networking-and-content-delivery/hosting-internal-https-static-websites-with-alb-s3-and-privatelink/ From your question it isn't clear if it is a public website, but if it is you can tweak the blog to use a public ALB and if it isn't you would need direct connect or VPN to access the private website.

AWS
エキスパート
回答済み 1年前
  • Users will need to authenticate themselves in the GovCloud before they can access the website content, I'm not sure if that classifies it as public or not. According to that model, can you elaborate on why I would need an EC2 instance to access the website? I want to be able to go to a secure link, authenticate myself, and then gain access to the site.

  • Amazon S3 website endpoints do not support HTTPS. - https://docs.aws.amazon.com/AmazonS3/latest/userguide/WebsiteHosting.html Since you require Https you need something to terminate the https connection before routing the request to S3. This is generally done via cloudfront, but with that not being an option in your environment the ALB becomes the next best option.

ログインしていません。 ログイン 回答を投稿する。

優れた回答とは、質問に明確に答え、建設的なフィードバックを提供し、質問者の専門分野におけるスキルの向上を促すものです。

質問に答えるためのガイドライン

関連するコンテンツ