- 필수 기능
- 앱 내
- 서비스 관리
- 인프라스트럭처
- 애플리케이션 성능
- 디지털 경험
- 소프트웨어 제공
- 보안
- 로그 관리
- 관리
- 인프라스트럭처
- ci
- containers
- csm
- ndm
- otel_guides
- overview
- slos
- synthetics
- tests
- 워크플로
Verify that HTTPS is used to secure AWS CloudFront distributions communications.
HTTPS ensures that malicious activity cannot occur when data is sent within AWS CloudFront’s Content Distribution Network (CDN).
Follow the configure CloudFront to require HTTPS between CloudFront and your custom origin docs to change your Origin Protocol Policy to HTTPS only.
Run get-distribution-config
with your AWS CloudFront distribution ID to retrieve your distribution’s configuration information.
get-distribution-config.sh
aws cloudfront get-distribution-config
--id ID000000000000
In a new JSON file, modify the returned configuration. Set OriginProtocolPolicy
to https-only
and save the configuration file.
https-only.sh
{
"ETag": "ETAG0000000000",
"DistributionConfig": {
"Origins": {
"Items": [
{
"CustomOriginConfig": {
"OriginProtocolPolicy": "https-only",
...
}
}
]
}
}
}
Run update-distribution
to update your distribution with your distribution id
, the path of the configuration file (created in step 2), and your etag
.
update-distribution.sh
aws cloudfront update-distribution
--id ID000000000000
--distribution-config https-only.json
--if-match ETAG0000000000