├── public
    ├── favicon.ico
    ├── manifest.json
    └── index.html
├── src
    ├── index.css
    ├── App.test.js
    ├── index.js
    ├── App.css
    ├── App.js
    ├── logo.svg
    └── registerServiceWorker.js
├── .gitignore
├── infra
    ├── iam.tf
    ├── main.tf
    ├── lambda.tf
    ├── s3.tf
    └── cloudfront.tf
├── package.json
├── deploy.sh
├── readme.md
└── cloud
    └── rewrite.js


/public/favicon.ico:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/jsonmaur/aws-static/HEAD/public/favicon.ico


--------------------------------------------------------------------------------
/src/index.css:
--------------------------------------------------------------------------------
1 | body {
2 |   margin: 0;
3 |   padding: 0;
4 |   font-family: sans-serif;
5 | }
6 | 


--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
1 | node_modules
2 | build
3 | 
4 | .zip
5 | .DS_Store
6 | 
7 | npm-debug.log
8 | *.tfstate*
9 | 


--------------------------------------------------------------------------------
/src/App.test.js:
--------------------------------------------------------------------------------
1 | import React from 'react';
2 | import ReactDOM from 'react-dom';
3 | import App from './App';
4 | 
5 | it('renders without crashing', () => {
6 |   const div = document.createElement('div');
7 |   ReactDOM.render(<App />, div);
8 | });
9 | 


--------------------------------------------------------------------------------
/src/index.js:
--------------------------------------------------------------------------------
1 | import React from 'react';
2 | import ReactDOM from 'react-dom';
3 | import './index.css';
4 | import App from './App';
5 | import registerServiceWorker from './registerServiceWorker';
6 | 
7 | ReactDOM.render(<App />, document.getElementById('root'));
8 | registerServiceWorker();
9 | 


--------------------------------------------------------------------------------
/public/manifest.json:
--------------------------------------------------------------------------------
 1 | {
 2 |   "short_name": "React App",
 3 |   "name": "Create React App Sample",
 4 |   "icons": [
 5 |     {
 6 |       "src": "favicon.ico",
 7 |       "sizes": "192x192",
 8 |       "type": "image/png"
 9 |     }
10 |   ],
11 |   "start_url": "./index.html",
12 |   "display": "standalone",
13 |   "theme_color": "#000000",
14 |   "background_color": "#ffffff"
15 | }
16 | 


--------------------------------------------------------------------------------
/src/App.css:
--------------------------------------------------------------------------------
 1 | .App {
 2 |   text-align: center;
 3 | }
 4 | 
 5 | .App-logo {
 6 |   animation: App-logo-spin infinite 20s linear;
 7 |   height: 80px;
 8 | }
 9 | 
10 | .App-header {
11 |   background-color: #222;
12 |   height: 150px;
13 |   padding: 20px;
14 |   color: white;
15 | }
16 | 
17 | .App-intro {
18 |   font-size: large;
19 | }
20 | 
21 | @keyframes App-logo-spin {
22 |   from { transform: rotate(0deg); }
23 |   to { transform: rotate(360deg); }
24 | }
25 | 


--------------------------------------------------------------------------------
/infra/iam.tf:
--------------------------------------------------------------------------------
 1 | data "aws_iam_policy_document" "lambda" {
 2 |   statement {
 3 |     actions = ["sts:AssumeRole"]
 4 |     principals {
 5 |       type = "Service"
 6 |       identifiers = [
 7 |         "lambda.amazonaws.com",
 8 |         "edgelambda.amazonaws.com"
 9 |       ]
10 |     }
11 |   }
12 | }
13 | 
14 | resource "aws_iam_role" "main" {
15 |   name_prefix = "${var.app_name}"
16 |   assume_role_policy = "${data.aws_iam_policy_document.lambda.json}"
17 | }
18 | 


--------------------------------------------------------------------------------
/package.json:
--------------------------------------------------------------------------------
 1 | {
 2 |   "name": "aws-static",
 3 |   "version": "0.1.0",
 4 |   "private": true,
 5 |   "dependencies": {
 6 |     "react": "^15.6.1",
 7 |     "react-dom": "^15.6.1",
 8 |     "react-scripts": "1.0.10"
 9 |   },
10 |   "scripts": {
11 |     "start": "react-scripts start",
12 |     "build": "react-scripts build",
13 |     "test": "react-scripts test --env=jsdom",
14 |     "eject": "react-scripts eject",
15 |     "apply": "cd infra && terraform apply",
16 |     "deploy": "./deploy.sh"
17 |   }
18 | }
19 | 


--------------------------------------------------------------------------------
/infra/main.tf:
--------------------------------------------------------------------------------
 1 | variable "app_name" {
 2 |   default = "my-app"
 3 | }
 4 | 
 5 | variable "profile" {
 6 |   default = "default"
 7 | }
 8 | 
 9 | provider "aws" {
10 |   region = "us-east-1"
11 |   profile = "${var.profile}"
12 | }
13 | 
14 | output "bucket_name" {
15 |   value = "${aws_s3_bucket.main.id}"
16 | }
17 | 
18 | output "cloudfront_id" {
19 |   value = "${aws_cloudfront_distribution.main.id}"
20 | }
21 | 
22 | output "cloudfront_domain" {
23 |   value = "${aws_cloudfront_distribution.main.domain_name}"
24 | }
25 | 


--------------------------------------------------------------------------------
/deploy.sh:
--------------------------------------------------------------------------------
 1 | #!/bin/bash
 2 | 
 3 | if [ ! -z $1 ]; then
 4 |   export AWS_DEFAULT_PROFILE=$1
 5 | fi
 6 | 
 7 | cd infra
 8 | BUCKET_NAME=$(terraform output bucket_name)
 9 | CLOUDFRONT_ID=$(terraform output cloudfront_id)
10 | CLOUDFRONT_DOMAIN=$(terraform output cloudfront_domain)
11 | 
12 | cd ../
13 | npm run build
14 | 
15 | aws s3 sync ./build s3://$BUCKET_NAME \
16 |   --delete
17 | 
18 | aws cloudfront create-invalidation \
19 |   --paths "/*" \
20 |   --distribution-id $CLOUDFRONT_ID
21 | 
22 | echo "=> Deployed to $CLOUDFRONT_DOMAIN"
23 | 


--------------------------------------------------------------------------------
/readme.md:
--------------------------------------------------------------------------------
 1 | # AWS Static
 2 | 
 3 | The example code from [Supercharging a static site with Lambda@Edge](https://medium.com/@jsonmaur/supercharging-a-static-site-with-lambda-edge-da5a1314238b).
 4 | 
 5 | ### Dependencies
 6 | 
 7 | - [Terraform](https://www.terraform.io/downloads.html)
 8 | - [AWS CLI](https://aws.amazon.com/cli/)
 9 | - [Create React App](https://github.com/facebookincubator/create-react-app)
10 | 
11 | ### Using an AWS CLI profile
12 | 
13 | ```bash
14 | $ npm run apply -- -var "profile=PROFILE_NAME"
15 | $ npm run deploy -- PROFILE_NAME
16 | ```
17 | 


--------------------------------------------------------------------------------
/src/App.js:
--------------------------------------------------------------------------------
 1 | import React, { Component } from 'react';
 2 | import logo from './logo.svg';
 3 | import './App.css';
 4 | 
 5 | class App extends Component {
 6 |   render() {
 7 |     return (
 8 |       <div className="App">
 9 |         <div className="App-header">
10 |           <img src={logo} className="App-logo" alt="logo" />
11 |           <h2>Welcome to React</h2>
12 |         </div>
13 |         <p className="App-intro">
14 |           To get started, edit <code>src/App.js</code> and save to reload.
15 |         </p>
16 |       </div>
17 |     );
18 |   }
19 | }
20 | 
21 | export default App;
22 | 


--------------------------------------------------------------------------------
/infra/lambda.tf:
--------------------------------------------------------------------------------
 1 | data "archive_file" "rewrite" {
 2 |   type = "zip"
 3 |   output_path = "${path.module}/.zip/rewrite.zip"
 4 |   source {
 5 |     filename = "index.js"
 6 |     content = "${file("${path.module}/../cloud/rewrite.js")}"
 7 |   }
 8 | }
 9 | 
10 | resource "aws_lambda_function" "rewrite" {
11 |   function_name = "${var.app_name}-rewrite"
12 |   filename = "${data.archive_file.rewrite.output_path}"
13 |   source_code_hash = "${data.archive_file.rewrite.output_base64sha256}"
14 |   role = "${aws_iam_role.main.arn}"
15 |   runtime = "nodejs10.x"
16 |   handler = "index.handler"
17 |   memory_size = 128
18 |   timeout = 3
19 |   publish = true
20 | }
21 | 


--------------------------------------------------------------------------------
/cloud/rewrite.js:
--------------------------------------------------------------------------------
 1 | const path = require('path')
 2 | const { STATUS_CODES } = require('http')
 3 | 
 4 | exports.handler = (evt, ctx, cb) => {
 5 |   const { request } = evt.Records[0].cf
 6 | 
 7 |   const htmlExtRegex = /(.*)\.html?$/
 8 |   if (htmlExtRegex.test(request.uri)) {
 9 |     const uri = request.uri.replace(htmlExtRegex, '$1')
10 |     return cb(null, redirect(uri))
11 |   }
12 | 
13 |   if (!path.extname(request.uri)) {
14 |     request.uri = '/index.html'
15 |   }
16 | 
17 |   cb(null, request)
18 | }
19 | 
20 | function redirect (to) {
21 |   return {
22 |     status: '301',
23 |     statusDescription: STATUS_CODES['301'],
24 |     headers: {
25 |       location: [{ key: 'Location', value: to }]
26 |     }
27 |   }
28 | }
29 | 


--------------------------------------------------------------------------------
/infra/s3.tf:
--------------------------------------------------------------------------------
 1 | data "aws_iam_policy_document" "s3" {
 2 |   statement {
 3 |     actions = [
 4 |       "s3:ListBucket",
 5 |       "s3:GetObject"
 6 |     ]
 7 |     resources = [
 8 |       "${aws_s3_bucket.main.arn}",
 9 |       "${aws_s3_bucket.main.arn}/*"
10 |     ]
11 |     principals {
12 |       type = "AWS"
13 |       identifiers = ["${aws_cloudfront_origin_access_identity.main.iam_arn}"]
14 |     }
15 |   }
16 | }
17 | 
18 | resource "aws_s3_bucket" "main" {
19 |   bucket_prefix = "${var.app_name}"
20 |   acl = "private"
21 |   force_destroy = true
22 |   acceleration_status = "Enabled"
23 | }
24 | 
25 | resource "aws_s3_bucket_policy" "main" {
26 |   bucket = "${aws_s3_bucket.main.id}"
27 |   policy = "${data.aws_iam_policy_document.s3.json}"
28 | }
29 | 


--------------------------------------------------------------------------------
/infra/cloudfront.tf:
--------------------------------------------------------------------------------
 1 | resource "aws_cloudfront_origin_access_identity" "main" {
 2 |   comment = "Created for ${var.app_name}"
 3 | }
 4 | 
 5 | resource "aws_cloudfront_distribution" "main" {
 6 |   enabled = true
 7 |   http_version = "http2"
 8 |   price_class = "PriceClass_All"
 9 |   is_ipv6_enabled = true
10 |   origin {
11 |     origin_id = "s3-origin"
12 |     domain_name = "${aws_s3_bucket.main.bucket_domain_name}"
13 |     s3_origin_config {
14 |       origin_access_identity = "${aws_cloudfront_origin_access_identity.main.cloudfront_access_identity_path}"
15 |     }
16 |   }
17 |   default_cache_behavior {
18 |     target_origin_id = "s3-origin"
19 |     allowed_methods = ["GET", "HEAD"]
20 |     cached_methods = ["GET", "HEAD"]
21 |     viewer_protocol_policy = "redirect-to-https"
22 |     min_ttl = 0
23 |     default_ttl = 3600
24 |     max_ttl = 86400
25 |     compress = true
26 |     lambda_function_association {
27 |       event_type = "origin-request"
28 |       lambda_arn = "${aws_lambda_function.rewrite.qualified_arn}"
29 |     }
30 |     forwarded_values {
31 |       query_string = false
32 |       cookies {
33 |         forward = "none"
34 |       }
35 |     }
36 |   }
37 |   viewer_certificate {
38 |     cloudfront_default_certificate = true
39 |   }
40 |   restrictions {
41 |     geo_restriction {
42 |       restriction_type = "none"
43 |     }
44 |   }
45 | }
46 | 


--------------------------------------------------------------------------------
/public/index.html:
--------------------------------------------------------------------------------
 1 | <!doctype html>
 2 | <html lang="en">
 3 |   <head>
 4 |     <meta charset="utf-8">
 5 |     <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no">
 6 |     <meta name="theme-color" content="#000000">
 7 |     <!--
 8 |       manifest.json provides metadata used when your web app is added to the
 9 |       homescreen on Android. See https://developers.google.com/web/fundamentals/engage-and-retain/web-app-manifest/
10 |     -->
11 |     <link rel="manifest" href="%PUBLIC_URL%/manifest.json">
12 |     <link rel="shortcut icon" href="%PUBLIC_URL%/favicon.ico">
13 |     <!--
14 |       Notice the use of %PUBLIC_URL% in the tags above.
15 |       It will be replaced with the URL of the `public` folder during the build.
16 |       Only files inside the `public` folder can be referenced from the HTML.
17 | 
18 |       Unlike "/favicon.ico" or "favicon.ico", "%PUBLIC_URL%/favicon.ico" will
19 |       work correctly both with client-side routing and a non-root public URL.
20 |       Learn how to configure a non-root public URL by running `npm run build`.
21 |     -->
22 |     <title>React App</title>
23 |   </head>
24 |   <body>
25 |     <noscript>
26 |       You need to enable JavaScript to run this app.
27 |     </noscript>
28 |     <div id="root"></div>
29 |     <!--
30 |       This HTML file is a template.
31 |       If you open it directly in the browser, you will see an empty page.
32 | 
33 |       You can add webfonts, meta tags, or analytics to this file.
34 |       The build step will place the bundled scripts into the <body> tag.
35 | 
36 |       To begin the development, run `npm start` or `yarn start`.
37 |       To create a production bundle, use `npm run build` or `yarn build`.
38 |     -->
39 |   </body>
40 | </html>
41 | 


--------------------------------------------------------------------------------
/src/logo.svg:
--------------------------------------------------------------------------------
1 | <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 841.9 595.3">
2 |     <g fill="#61DAFB">
3 |         <path d="M666.3 296.5c0-32.5-40.7-63.3-103.1-82.4 14.4-63.6 8-114.2-20.2-130.4-6.5-3.8-14.1-5.6-22.4-5.6v22.3c4.6 0 8.3.9 11.4 2.6 13.6 7.8 19.5 37.5 14.9 75.7-1.1 9.4-2.9 19.3-5.1 29.4-19.6-4.8-41-8.5-63.5-10.9-13.5-18.5-27.5-35.3-41.6-50 32.6-30.3 63.2-46.9 84-46.9V78c-27.5 0-63.5 19.6-99.9 53.6-36.4-33.8-72.4-53.2-99.9-53.2v22.3c20.7 0 51.4 16.5 84 46.6-14 14.7-28 31.4-41.3 49.9-22.6 2.4-44 6.1-63.6 11-2.3-10-4-19.7-5.2-29-4.7-38.2 1.1-67.9 14.6-75.8 3-1.8 6.9-2.6 11.5-2.6V78.5c-8.4 0-16 1.8-22.6 5.6-28.1 16.2-34.4 66.7-19.9 130.1-62.2 19.2-102.7 49.9-102.7 82.3 0 32.5 40.7 63.3 103.1 82.4-14.4 63.6-8 114.2 20.2 130.4 6.5 3.8 14.1 5.6 22.5 5.6 27.5 0 63.5-19.6 99.9-53.6 36.4 33.8 72.4 53.2 99.9 53.2 8.4 0 16-1.8 22.6-5.6 28.1-16.2 34.4-66.7 19.9-130.1 62-19.1 102.5-49.9 102.5-82.3zm-130.2-66.7c-3.7 12.9-8.3 26.2-13.5 39.5-4.1-8-8.4-16-13.1-24-4.6-8-9.5-15.8-14.4-23.4 14.2 2.1 27.9 4.7 41 7.9zm-45.8 106.5c-7.8 13.5-15.8 26.3-24.1 38.2-14.9 1.3-30 2-45.2 2-15.1 0-30.2-.7-45-1.9-8.3-11.9-16.4-24.6-24.2-38-7.6-13.1-14.5-26.4-20.8-39.8 6.2-13.4 13.2-26.8 20.7-39.9 7.8-13.5 15.8-26.3 24.1-38.2 14.9-1.3 30-2 45.2-2 15.1 0 30.2.7 45 1.9 8.3 11.9 16.4 24.6 24.2 38 7.6 13.1 14.5 26.4 20.8 39.8-6.3 13.4-13.2 26.8-20.7 39.9zm32.3-13c5.4 13.4 10 26.8 13.8 39.8-13.1 3.2-26.9 5.9-41.2 8 4.9-7.7 9.8-15.6 14.4-23.7 4.6-8 8.9-16.1 13-24.1zM421.2 430c-9.3-9.6-18.6-20.3-27.8-32 9 .4 18.2.7 27.5.7 9.4 0 18.7-.2 27.8-.7-9 11.7-18.3 22.4-27.5 32zm-74.4-58.9c-14.2-2.1-27.9-4.7-41-7.9 3.7-12.9 8.3-26.2 13.5-39.5 4.1 8 8.4 16 13.1 24 4.7 8 9.5 15.8 14.4 23.4zM420.7 163c9.3 9.6 18.6 20.3 27.8 32-9-.4-18.2-.7-27.5-.7-9.4 0-18.7.2-27.8.7 9-11.7 18.3-22.4 27.5-32zm-74 58.9c-4.9 7.7-9.8 15.6-14.4 23.7-4.6 8-8.9 16-13 24-5.4-13.4-10-26.8-13.8-39.8 13.1-3.1 26.9-5.8 41.2-7.9zm-90.5 125.2c-35.4-15.1-58.3-34.9-58.3-50.6 0-15.7 22.9-35.6 58.3-50.6 8.6-3.7 18-7 27.7-10.1 5.7 19.6 13.2 40 22.5 60.9-9.2 20.8-16.6 41.1-22.2 60.6-9.9-3.1-19.3-6.5-28-10.2zM310 490c-13.6-7.8-19.5-37.5-14.9-75.7 1.1-9.4 2.9-19.3 5.1-29.4 19.6 4.8 41 8.5 63.5 10.9 13.5 18.5 27.5 35.3 41.6 50-32.6 30.3-63.2 46.9-84 46.9-4.5-.1-8.3-1-11.3-2.7zm237.2-76.2c4.7 38.2-1.1 67.9-14.6 75.8-3 1.8-6.9 2.6-11.5 2.6-20.7 0-51.4-16.5-84-46.6 14-14.7 28-31.4 41.3-49.9 22.6-2.4 44-6.1 63.6-11 2.3 10.1 4.1 19.8 5.2 29.1zm38.5-66.7c-8.6 3.7-18 7-27.7 10.1-5.7-19.6-13.2-40-22.5-60.9 9.2-20.8 16.6-41.1 22.2-60.6 9.9 3.1 19.3 6.5 28.1 10.2 35.4 15.1 58.3 34.9 58.3 50.6-.1 15.7-23 35.6-58.4 50.6zM320.8 78.4z"/>
4 |         <circle cx="420.9" cy="296.5" r="45.7"/>
5 |         <path d="M520.5 78.1z"/>
6 |     </g>
7 | </svg>
8 | 


--------------------------------------------------------------------------------
/src/registerServiceWorker.js:
--------------------------------------------------------------------------------
  1 | // In production, we register a service worker to serve assets from local cache.
  2 | 
  3 | // This lets the app load faster on subsequent visits in production, and gives
  4 | // it offline capabilities. However, it also means that developers (and users)
  5 | // will only see deployed updates on the "N+1" visit to a page, since previously
  6 | // cached resources are updated in the background.
  7 | 
  8 | // To learn more about the benefits of this model, read https://goo.gl/KwvDNy.
  9 | // This link also includes instructions on opting out of this behavior.
 10 | 
 11 | const isLocalhost = Boolean(
 12 |   window.location.hostname === 'localhost' ||
 13 |     // [::1] is the IPv6 localhost address.
 14 |     window.location.hostname === '[::1]' ||
 15 |     // 127.0.0.1/8 is considered localhost for IPv4.
 16 |     window.location.hostname.match(
 17 |       /^127(?:\.(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)){3}$/
 18 |     )
 19 | );
 20 | 
 21 | export default function register() {
 22 |   if (process.env.NODE_ENV === 'production' && 'serviceWorker' in navigator) {
 23 |     // The URL constructor is available in all browsers that support SW.
 24 |     const publicUrl = new URL(process.env.PUBLIC_URL, window.location);
 25 |     if (publicUrl.origin !== window.location.origin) {
 26 |       // Our service worker won't work if PUBLIC_URL is on a different origin
 27 |       // from what our page is served on. This might happen if a CDN is used to
 28 |       // serve assets; see https://github.com/facebookincubator/create-react-app/issues/2374
 29 |       return;
 30 |     }
 31 | 
 32 |     window.addEventListener('load', () => {
 33 |       const swUrl = `${process.env.PUBLIC_URL}/service-worker.js`;
 34 | 
 35 |       if (!isLocalhost) {
 36 |         // Is not local host. Just register service worker
 37 |         registerValidSW(swUrl);
 38 |       } else {
 39 |         // This is running on localhost. Lets check if a service worker still exists or not.
 40 |         checkValidServiceWorker(swUrl);
 41 |       }
 42 |     });
 43 |   }
 44 | }
 45 | 
 46 | function registerValidSW(swUrl) {
 47 |   navigator.serviceWorker
 48 |     .register(swUrl)
 49 |     .then(registration => {
 50 |       registration.onupdatefound = () => {
 51 |         const installingWorker = registration.installing;
 52 |         installingWorker.onstatechange = () => {
 53 |           if (installingWorker.state === 'installed') {
 54 |             if (navigator.serviceWorker.controller) {
 55 |               // At this point, the old content will have been purged and
 56 |               // the fresh content will have been added to the cache.
 57 |               // It's the perfect time to display a "New content is
 58 |               // available; please refresh." message in your web app.
 59 |               console.log('New content is available; please refresh.');
 60 |             } else {
 61 |               // At this point, everything has been precached.
 62 |               // It's the perfect time to display a
 63 |               // "Content is cached for offline use." message.
 64 |               console.log('Content is cached for offline use.');
 65 |             }
 66 |           }
 67 |         };
 68 |       };
 69 |     })
 70 |     .catch(error => {
 71 |       console.error('Error during service worker registration:', error);
 72 |     });
 73 | }
 74 | 
 75 | function checkValidServiceWorker(swUrl) {
 76 |   // Check if the service worker can be found. If it can't reload the page.
 77 |   fetch(swUrl)
 78 |     .then(response => {
 79 |       // Ensure service worker exists, and that we really are getting a JS file.
 80 |       if (
 81 |         response.status === 404 ||
 82 |         response.headers.get('content-type').indexOf('javascript') === -1
 83 |       ) {
 84 |         // No service worker found. Probably a different app. Reload the page.
 85 |         navigator.serviceWorker.ready.then(registration => {
 86 |           registration.unregister().then(() => {
 87 |             window.location.reload();
 88 |           });
 89 |         });
 90 |       } else {
 91 |         // Service worker found. Proceed as normal.
 92 |         registerValidSW(swUrl);
 93 |       }
 94 |     })
 95 |     .catch(() => {
 96 |       console.log(
 97 |         'No internet connection found. App is running in offline mode.'
 98 |       );
 99 |     });
100 | }
101 | 
102 | export function unregister() {
103 |   if ('serviceWorker' in navigator) {
104 |     navigator.serviceWorker.ready.then(registration => {
105 |       registration.unregister();
106 |     });
107 |   }
108 | }
109 | 


--------------------------------------------------------------------------------