63 lines
1.5 KiB
HCL
63 lines
1.5 KiB
HCL
resource "aws_cloudfront_distribution" "api-by-becki" {
|
|
origin {
|
|
domain_name = "abb.gmem.ca"
|
|
origin_id = "abb.gmem.ca"
|
|
custom_origin_config {
|
|
http_port = 80
|
|
https_port = 443
|
|
origin_protocol_policy = "https-only"
|
|
origin_ssl_protocols = ["TLSv1.2"]
|
|
}
|
|
}
|
|
|
|
default_cache_behavior {
|
|
allowed_methods = ["DELETE", "GET", "HEAD", "OPTIONS", "PATCH", "POST", "PUT"]
|
|
cached_methods = ["GET", "HEAD"]
|
|
target_origin_id = "abb.gmem.ca"
|
|
viewer_protocol_policy = "allow-all"
|
|
min_ttl = 0
|
|
default_ttl = 3600
|
|
max_ttl = 86400
|
|
|
|
forwarded_values {
|
|
query_string = true
|
|
|
|
cookies {
|
|
forward = "all"
|
|
}
|
|
}
|
|
}
|
|
|
|
|
|
http_version = "http2and3"
|
|
|
|
enabled = true
|
|
is_ipv6_enabled = true
|
|
|
|
aliases = ["api-by-becki.gmem.ca"]
|
|
viewer_certificate {
|
|
acm_certificate_arn = aws_acm_certificate.api-by-becki.arn
|
|
ssl_support_method = "sni-only"
|
|
}
|
|
|
|
|
|
restrictions {
|
|
geo_restriction {
|
|
restriction_type = "none"
|
|
}
|
|
}
|
|
}
|
|
|
|
resource "aws_acm_certificate" "api-by-becki" {
|
|
domain_name = "api-by-becki.gmem.ca"
|
|
validation_method = "DNS"
|
|
provider = aws.virginia
|
|
}
|
|
|
|
resource "aws_acm_certificate_validation" "api-by-becki" {
|
|
certificate_arn = aws_acm_certificate.api-by-becki.arn
|
|
validation_record_fqdns = [
|
|
aws_route53_record.api-by-becki-primary.fqdn
|
|
]
|
|
provider = aws.virginia
|
|
} |