“CloudFront Extensions” GitHub project offers an open source package consisting of a set of applications and solution templates that covers various user scenarios for using Lambda@Edge and Amazon CloudFront.
Ultimately, we want to provide out-of-box experience from three dimensions
- One stop to find Lambda@Edge scripts for various use cases
This project offers production level Lambda@Edge scripts for common CloudFront use cases, such as Redirect, Header Rewriting, Authentication, Pre-warm etc. The solution aims to optimize the user experience of CloudFront configuration in global regions (where Lambda@Edge service is available), and help you to simplify global CloudFront configuration via Lambda function scripts. You can not only checkout Lambda@Edge scripts from this GitHub repo, but also can directly deploy them from public Serverless Application Repository(SAR) into your AWS Console without coding.
| Catelog | Description |
|---|---|
| Authentication | Authenticating by Cognito or third-party native library, add security information into HTTP headers, etc. |
| Validation | Validating specific parameters from HTTP request, such as check request token through MD5, etc. |
| URL Rewrite | All functions are related to rewrite URL in various ways. |
| URL Redirect | All functions are related to redirect URL in as many as possible way. |
| Override Request | Access, modify and override HTTP request, or even change further behavior. |
| Override Response | Generate, modify and override HTTP response for viewer request or origin request event. |
| Origin Selection | Route to different origins based on information in the request, or even warm up from origin. |
| Personalize Content | Personalize the content as per requirement, such as resize the pictures. |
| Security | All functions are related secure perspective, such as anti-leeching, etc. |
- One-Click to deploy commonly used CloudFront solutions
This project offers common solutions for using CloudFront. These solutions are provided in form of pre-baked AWS CloudFormation templates. With 1-click, you can have solution launched into your own AWS console.
| Name | Description |
|---|---|
| WAF & Shield Deployment for CloudFront | Prepared templates to quickly launch distribution and pre-configured rules, such as AWS managed common rules, whitelist, blacklist, HTTP flood, SQL injection, XSS, Bad bot, etc. |
- Out-of-box experience when integrating with external monitoring system
This project also provides out-of-box monitoring solution to enhance the overall observability and simplify the integration of CloudFront and customers’ existing monitoring system.
| Name | Description |
|---|---|
| End-to-end monitoring | Centralized logs management solution and built-in dashboards on top of ElasticSearch, collecting file & real-time logs from CloudFront and related services. |
To get started, please find the step-by-step workshop material here: https://awslabs.github.io/aws-cloudfront-extensions/
See CONTRIBUTING for more information.
This project is licensed under the Apache-2.0 License.