CREATING A STATIC WEBSITE WITH S3, Route 53, CloudFront and Certificate Manager.
Oluwaseun Olaleye
Posted on October 26, 2024
USE CASE
My manager has assigned me a project to design and deploy a scalable, highly available, and secure e-commerce website, ensuring optimal performance and user experience.
Prerequisites
- AWS free account
- Registered domain name
Introduction
Welcome to our comprehensive guide on building a scalable and secure multi-tier architecture using Amazon S3, Route 53, Certificate Manager, and CloudFront. In this article, I will walk you through each step, explaining the process in detail.
Definition of Services
Amazon S3 (Simple Storage Service): A highly durable, scalable, and secure object storage service for storing and retrieving data.
Amazon Route 53: A highly available and scalable Domain Name System (DNS) service that routes end users to Internet applications.
Certificate Manager:is a service offered by AWS that simplifies the provisioning, management, and deployment of Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates for AWS services.
CloudFront:Amazon CloudFront is a fast content delivery network service that securely distributes web content to users globally.
Let's dive in!
Firstly, let's create S3 bucket, this is where our website will be hosted.
I configured my s3 bucket name to be the same with my domain name.
We will uncheck "Block all public access option", allowing our website to be accessible to the public.
Now that our bucket is set up, we will proceed to upload our HTML file into it.
Now, let's configure our bucket permissions to ensure secure access.
Next, let's enable static website hosting for our s3 bucket.
The screenshot below reveals that our website is currently unencrypted; to address this, we will obtain and implement an SSL/TLS certificate.
CERTIFICATE MANAGER
Next, we will encrypt our website's data with an SSL/TLS certificate, protecting customer information.
ROUTE 53
We will host our Domain Name system(DNS) in Amazon route 53 and create a CNAME record.
We are going to add this Nameserver to our domain provider.
Next thing is to add the Certificate Manager CNAME to Route 53,ensuring secure domain validation and SSL/TLS certificate issuance for the domain.
CLOUDFRONT
Next, we will use our static website's URL as the origin domain for our CloudFront distribution.
Following the successful creation of our CloudFront distribution, we navigated back to Route 53 to configure an A record, associating our domain name with the CloudFront distribution.
Posted on October 26, 2024
Join Our Newsletter. No Spam, Only the good stuff.
Sign up to receive the latest update from our blog.
Related
October 26, 2024