By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

HTTPS/TLS + static S3 websites

1

A customer is currently hosting a static website on S3 and want to enable HTTPS/TLS connections. Currently the domain resides outside AWS and the customer has created a certificate that they want to use. I was reading through documentation and it says the only way to achieve this is by redirecting to Cloudfront.

Any thoughts on this? What is the simplest way to achieve this ? Can this be achieved without using Cloudfront? Will the customer need to import their certificate to ACM?

Thanks

Topics
ServerlessStorageComputeNetworking & Content DeliverySecurity, Identity, & Compliance
Tags
ServerlessAmazon Simple Storage ServiceWebsite ProvisioningAmazon CloudFrontAWS Certificate Manager
Language
English
AWS-User-8551783
asked 3 years ago314 views
1 Answer
0
Accepted Answer

CloudFront would be the best option, since as well as providing the requirement (HTTPS on custom domain name) it will also provide added benefits of lower latency and lower costs (assuming that the clients for the website are outside the AWS region that the bucket it located).

This is a common usecase for CloudFront. CloudFront supports custom CNAMEs and certificates (either through ACM or third-party provided certificates) and using S3 as an origin - either via its website endpoint or directly using the S3 API endpoint.

AWS
EXPERT
LeeAtk@AWS
answered 3 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content