├── .gitignore ├── cloud └── rewrite.js ├── deploy.sh ├── infra ├── cloudfront.tf ├── iam.tf ├── lambda.tf ├── main.tf └── s3.tf ├── package.json ├── public ├── favicon.ico ├── index.html └── manifest.json ├── readme.md └── src ├── App.css ├── App.js ├── App.test.js ├── index.css ├── index.js ├── logo.svg └── registerServiceWorker.js /.gitignore: -------------------------------------------------------------------------------- 1 | node_modules 2 | build 3 | 4 | .zip 5 | .DS_Store 6 | 7 | npm-debug.log 8 | *.tfstate* 9 | -------------------------------------------------------------------------------- /cloud/rewrite.js: -------------------------------------------------------------------------------- 1 | const path = require('path') 2 | const { STATUS_CODES } = require('http') 3 | 4 | exports.handler = (evt, ctx, cb) => { 5 | const { request } = evt.Records[0].cf 6 | 7 | const htmlExtRegex = /(.*)\.html?$/ 8 | if (htmlExtRegex.test(request.uri)) { 9 | const uri = request.uri.replace(htmlExtRegex, '$1') 10 | return cb(null, redirect(uri)) 11 | } 12 | 13 | if (!path.extname(request.uri)) { 14 | request.uri = '/index.html' 15 | } 16 | 17 | cb(null, request) 18 | } 19 | 20 | function redirect (to) { 21 | return { 22 | status: '301', 23 | statusDescription: STATUS_CODES['301'], 24 | headers: { 25 | location: [{ key: 'Location', value: to }] 26 | } 27 | } 28 | } 29 | -------------------------------------------------------------------------------- /deploy.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | if [ ! -z $1 ]; then 4 | export AWS_DEFAULT_PROFILE=$1 5 | fi 6 | 7 | cd infra 8 | BUCKET_NAME=$(terraform output bucket_name) 9 | CLOUDFRONT_ID=$(terraform output cloudfront_id) 10 | CLOUDFRONT_DOMAIN=$(terraform output cloudfront_domain) 11 | 12 | cd ../ 13 | npm run build 14 | 15 | aws s3 sync ./build s3://$BUCKET_NAME \ 16 | --delete 17 | 18 | aws cloudfront create-invalidation \ 19 | --paths "/*" \ 20 | --distribution-id $CLOUDFRONT_ID 21 | 22 | echo "=> Deployed to $CLOUDFRONT_DOMAIN" 23 | -------------------------------------------------------------------------------- /infra/cloudfront.tf: -------------------------------------------------------------------------------- 1 | resource "aws_cloudfront_origin_access_identity" "main" { 2 | comment = "Created for ${var.app_name}" 3 | } 4 | 5 | resource "aws_cloudfront_distribution" "main" { 6 | enabled = true 7 | http_version = "http2" 8 | price_class = "PriceClass_All" 9 | is_ipv6_enabled = true 10 | origin { 11 | origin_id = "s3-origin" 12 | domain_name = "${aws_s3_bucket.main.bucket_domain_name}" 13 | s3_origin_config { 14 | origin_access_identity = "${aws_cloudfront_origin_access_identity.main.cloudfront_access_identity_path}" 15 | } 16 | } 17 | default_cache_behavior { 18 | target_origin_id = "s3-origin" 19 | allowed_methods = ["GET", "HEAD"] 20 | cached_methods = ["GET", "HEAD"] 21 | viewer_protocol_policy = "redirect-to-https" 22 | min_ttl = 0 23 | default_ttl = 3600 24 | max_ttl = 86400 25 | compress = true 26 | lambda_function_association { 27 | event_type = "origin-request" 28 | lambda_arn = "${aws_lambda_function.rewrite.qualified_arn}" 29 | } 30 | forwarded_values { 31 | query_string = false 32 | cookies { 33 | forward = "none" 34 | } 35 | } 36 | } 37 | viewer_certificate { 38 | cloudfront_default_certificate = true 39 | } 40 | restrictions { 41 | geo_restriction { 42 | restriction_type = "none" 43 | } 44 | } 45 | } 46 | -------------------------------------------------------------------------------- /infra/iam.tf: -------------------------------------------------------------------------------- 1 | data "aws_iam_policy_document" "lambda" { 2 | statement { 3 | actions = ["sts:AssumeRole"] 4 | principals { 5 | type = "Service" 6 | identifiers = [ 7 | "lambda.amazonaws.com", 8 | "edgelambda.amazonaws.com" 9 | ] 10 | } 11 | } 12 | } 13 | 14 | resource "aws_iam_role" "main" { 15 | name_prefix = "${var.app_name}" 16 | assume_role_policy = "${data.aws_iam_policy_document.lambda.json}" 17 | } 18 | -------------------------------------------------------------------------------- /infra/lambda.tf: -------------------------------------------------------------------------------- 1 | data "archive_file" "rewrite" { 2 | type = "zip" 3 | output_path = "${path.module}/.zip/rewrite.zip" 4 | source { 5 | filename = "index.js" 6 | content = "${file("${path.module}/../cloud/rewrite.js")}" 7 | } 8 | } 9 | 10 | resource "aws_lambda_function" "rewrite" { 11 | function_name = "${var.app_name}-rewrite" 12 | filename = "${data.archive_file.rewrite.output_path}" 13 | source_code_hash = "${data.archive_file.rewrite.output_base64sha256}" 14 | role = "${aws_iam_role.main.arn}" 15 | runtime = "nodejs10.x" 16 | handler = "index.handler" 17 | memory_size = 128 18 | timeout = 3 19 | publish = true 20 | } 21 | -------------------------------------------------------------------------------- /infra/main.tf: -------------------------------------------------------------------------------- 1 | variable "app_name" { 2 | default = "my-app" 3 | } 4 | 5 | variable "profile" { 6 | default = "default" 7 | } 8 | 9 | provider "aws" { 10 | region = "us-east-1" 11 | profile = "${var.profile}" 12 | } 13 | 14 | output "bucket_name" { 15 | value = "${aws_s3_bucket.main.id}" 16 | } 17 | 18 | output "cloudfront_id" { 19 | value = "${aws_cloudfront_distribution.main.id}" 20 | } 21 | 22 | output "cloudfront_domain" { 23 | value = "${aws_cloudfront_distribution.main.domain_name}" 24 | } 25 | -------------------------------------------------------------------------------- /infra/s3.tf: -------------------------------------------------------------------------------- 1 | data "aws_iam_policy_document" "s3" { 2 | statement { 3 | actions = [ 4 | "s3:ListBucket", 5 | "s3:GetObject" 6 | ] 7 | resources = [ 8 | "${aws_s3_bucket.main.arn}", 9 | "${aws_s3_bucket.main.arn}/*" 10 | ] 11 | principals { 12 | type = "AWS" 13 | identifiers = ["${aws_cloudfront_origin_access_identity.main.iam_arn}"] 14 | } 15 | } 16 | } 17 | 18 | resource "aws_s3_bucket" "main" { 19 | bucket_prefix = "${var.app_name}" 20 | acl = "private" 21 | force_destroy = true 22 | acceleration_status = "Enabled" 23 | } 24 | 25 | resource "aws_s3_bucket_policy" "main" { 26 | bucket = "${aws_s3_bucket.main.id}" 27 | policy = "${data.aws_iam_policy_document.s3.json}" 28 | } 29 | -------------------------------------------------------------------------------- /package.json: -------------------------------------------------------------------------------- 1 | { 2 | "name": "aws-static", 3 | "version": "0.1.0", 4 | "private": true, 5 | "dependencies": { 6 | "react": "^15.6.1", 7 | "react-dom": "^15.6.1", 8 | "react-scripts": "1.0.10" 9 | }, 10 | "scripts": { 11 | "start": "react-scripts start", 12 | "build": "react-scripts build", 13 | "test": "react-scripts test --env=jsdom", 14 | "eject": "react-scripts eject", 15 | "apply": "cd infra && terraform apply", 16 | "deploy": "./deploy.sh" 17 | } 18 | } 19 | -------------------------------------------------------------------------------- /public/favicon.ico: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/jsonmaur/aws-static/e5dbd1b8dc47e7b848b9de32e7c7a0f2e47a65ac/public/favicon.ico -------------------------------------------------------------------------------- /public/index.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 11 | 12 | 13 | 22 | React App 23 | 24 | 25 | 28 |
29 | 39 | 40 | 41 | -------------------------------------------------------------------------------- /public/manifest.json: -------------------------------------------------------------------------------- 1 | { 2 | "short_name": "React App", 3 | "name": "Create React App Sample", 4 | "icons": [ 5 | { 6 | "src": "favicon.ico", 7 | "sizes": "192x192", 8 | "type": "image/png" 9 | } 10 | ], 11 | "start_url": "./index.html", 12 | "display": "standalone", 13 | "theme_color": "#000000", 14 | "background_color": "#ffffff" 15 | } 16 | -------------------------------------------------------------------------------- /readme.md: -------------------------------------------------------------------------------- 1 | # AWS Static 2 | 3 | The example code from [Supercharging a static site with Lambda@Edge](https://medium.com/@jsonmaur/supercharging-a-static-site-with-lambda-edge-da5a1314238b). 4 | 5 | ### Dependencies 6 | 7 | - [Terraform](https://www.terraform.io/downloads.html) 8 | - [AWS CLI](https://aws.amazon.com/cli/) 9 | - [Create React App](https://github.com/facebookincubator/create-react-app) 10 | 11 | ### Using an AWS CLI profile 12 | 13 | ```bash 14 | $ npm run apply -- -var "profile=PROFILE_NAME" 15 | $ npm run deploy -- PROFILE_NAME 16 | ``` 17 | -------------------------------------------------------------------------------- /src/App.css: -------------------------------------------------------------------------------- 1 | .App { 2 | text-align: center; 3 | } 4 | 5 | .App-logo { 6 | animation: App-logo-spin infinite 20s linear; 7 | height: 80px; 8 | } 9 | 10 | .App-header { 11 | background-color: #222; 12 | height: 150px; 13 | padding: 20px; 14 | color: white; 15 | } 16 | 17 | .App-intro { 18 | font-size: large; 19 | } 20 | 21 | @keyframes App-logo-spin { 22 | from { transform: rotate(0deg); } 23 | to { transform: rotate(360deg); } 24 | } 25 | -------------------------------------------------------------------------------- /src/App.js: -------------------------------------------------------------------------------- 1 | import React, { Component } from 'react'; 2 | import logo from './logo.svg'; 3 | import './App.css'; 4 | 5 | class App extends Component { 6 | render() { 7 | return ( 8 |
9 |
10 | logo 11 |

Welcome to React

12 |
13 |

14 | To get started, edit src/App.js and save to reload. 15 |

16 |
17 | ); 18 | } 19 | } 20 | 21 | export default App; 22 | -------------------------------------------------------------------------------- /src/App.test.js: -------------------------------------------------------------------------------- 1 | import React from 'react'; 2 | import ReactDOM from 'react-dom'; 3 | import App from './App'; 4 | 5 | it('renders without crashing', () => { 6 | const div = document.createElement('div'); 7 | ReactDOM.render(, div); 8 | }); 9 | -------------------------------------------------------------------------------- /src/index.css: -------------------------------------------------------------------------------- 1 | body { 2 | margin: 0; 3 | padding: 0; 4 | font-family: sans-serif; 5 | } 6 | -------------------------------------------------------------------------------- /src/index.js: -------------------------------------------------------------------------------- 1 | import React from 'react'; 2 | import ReactDOM from 'react-dom'; 3 | import './index.css'; 4 | import App from './App'; 5 | import registerServiceWorker from './registerServiceWorker'; 6 | 7 | ReactDOM.render(, document.getElementById('root')); 8 | registerServiceWorker(); 9 | -------------------------------------------------------------------------------- /src/logo.svg: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | -------------------------------------------------------------------------------- /src/registerServiceWorker.js: -------------------------------------------------------------------------------- 1 | // In production, we register a service worker to serve assets from local cache. 2 | 3 | // This lets the app load faster on subsequent visits in production, and gives 4 | // it offline capabilities. However, it also means that developers (and users) 5 | // will only see deployed updates on the "N+1" visit to a page, since previously 6 | // cached resources are updated in the background. 7 | 8 | // To learn more about the benefits of this model, read https://goo.gl/KwvDNy. 9 | // This link also includes instructions on opting out of this behavior. 10 | 11 | const isLocalhost = Boolean( 12 | window.location.hostname === 'localhost' || 13 | // [::1] is the IPv6 localhost address. 14 | window.location.hostname === '[::1]' || 15 | // 127.0.0.1/8 is considered localhost for IPv4. 16 | window.location.hostname.match( 17 | /^127(?:\.(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)){3}$/ 18 | ) 19 | ); 20 | 21 | export default function register() { 22 | if (process.env.NODE_ENV === 'production' && 'serviceWorker' in navigator) { 23 | // The URL constructor is available in all browsers that support SW. 24 | const publicUrl = new URL(process.env.PUBLIC_URL, window.location); 25 | if (publicUrl.origin !== window.location.origin) { 26 | // Our service worker won't work if PUBLIC_URL is on a different origin 27 | // from what our page is served on. This might happen if a CDN is used to 28 | // serve assets; see https://github.com/facebookincubator/create-react-app/issues/2374 29 | return; 30 | } 31 | 32 | window.addEventListener('load', () => { 33 | const swUrl = `${process.env.PUBLIC_URL}/service-worker.js`; 34 | 35 | if (!isLocalhost) { 36 | // Is not local host. Just register service worker 37 | registerValidSW(swUrl); 38 | } else { 39 | // This is running on localhost. Lets check if a service worker still exists or not. 40 | checkValidServiceWorker(swUrl); 41 | } 42 | }); 43 | } 44 | } 45 | 46 | function registerValidSW(swUrl) { 47 | navigator.serviceWorker 48 | .register(swUrl) 49 | .then(registration => { 50 | registration.onupdatefound = () => { 51 | const installingWorker = registration.installing; 52 | installingWorker.onstatechange = () => { 53 | if (installingWorker.state === 'installed') { 54 | if (navigator.serviceWorker.controller) { 55 | // At this point, the old content will have been purged and 56 | // the fresh content will have been added to the cache. 57 | // It's the perfect time to display a "New content is 58 | // available; please refresh." message in your web app. 59 | console.log('New content is available; please refresh.'); 60 | } else { 61 | // At this point, everything has been precached. 62 | // It's the perfect time to display a 63 | // "Content is cached for offline use." message. 64 | console.log('Content is cached for offline use.'); 65 | } 66 | } 67 | }; 68 | }; 69 | }) 70 | .catch(error => { 71 | console.error('Error during service worker registration:', error); 72 | }); 73 | } 74 | 75 | function checkValidServiceWorker(swUrl) { 76 | // Check if the service worker can be found. If it can't reload the page. 77 | fetch(swUrl) 78 | .then(response => { 79 | // Ensure service worker exists, and that we really are getting a JS file. 80 | if ( 81 | response.status === 404 || 82 | response.headers.get('content-type').indexOf('javascript') === -1 83 | ) { 84 | // No service worker found. Probably a different app. Reload the page. 85 | navigator.serviceWorker.ready.then(registration => { 86 | registration.unregister().then(() => { 87 | window.location.reload(); 88 | }); 89 | }); 90 | } else { 91 | // Service worker found. Proceed as normal. 92 | registerValidSW(swUrl); 93 | } 94 | }) 95 | .catch(() => { 96 | console.log( 97 | 'No internet connection found. App is running in offline mode.' 98 | ); 99 | }); 100 | } 101 | 102 | export function unregister() { 103 | if ('serviceWorker' in navigator) { 104 | navigator.serviceWorker.ready.then(registration => { 105 | registration.unregister(); 106 | }); 107 | } 108 | } 109 | --------------------------------------------------------------------------------