Networking & Content Delivery

Category: Amazon CloudFront

Limit access to your origins using the AWS-managed prefix list for Amazon CloudFront

Amazon CloudFront provides an easy and cost-effective way to distribute content with low latency and high data transfer speeds using a worldwide network of edge locations. To enable requests from CloudFront to access your origins (the source of your content, for example, Amazon Elastic Compute Cloud (Amazon EC2) instances, the security policies on your origin […]

Read More

Amazon CloudFront introduces Server Timing headers

Introduction Amazon CloudFront has recently announced a new feature, Server Timing headers, which provides detailed performance information, such as whether content was served from cache when a request was received, how the request was routed to the CloudFront edge location, and how much time elapsed during each stage of the connection and response process. Server […]

Read More

Implementing Default Directory Indexes in Amazon S3-backed Amazon CloudFront Origins Using CloudFront Functions

Amazon CloudFront Functions now makes it possible to do things that were previously only possible with AWS Lambda@Edge, but in a more performant manner. For example, now you can manipulate the URI path—something that is essential when you want to secure an origin using an Origin Access Identity (OAI) with Amazon CloudFront. In 2017, I […]

Read More

AWS Networking and Content Delivery Recap of re:Invent 2021

Happy 2022 AWS Networking & Content Delivery enthusiasts! In December 2021, AWS hosted its 10th annual re:Invent conference. The Networking & Content Delivery team had 14 unique breakout sessions that were recorded and can be found on this playlist. In addition to these sessions, the Networking team had a leadership session presented by David Brown, […]

Read More

Signed cookie-based authentication with Amazon CloudFront and AWS Lambda@Edge: Part 2 – Authorization

In this two-part blog series, you will learn how to use email addresses and domain names for user authentication. With this method, you restrict credentials-free user access to a static website. In this second part of the blog series, you will learn how to implement the authorization mechanism. In the previous blog post, you learnt […]

Read More

Signed cookie-based authentication with Amazon CloudFront and AWS Lambda@Edge: Part 1 -Authentication

In this two-part blog series, you will learn how to use email addresses and domain names for user authentication. With this method, you restrict credentials-free user access to a static website. In this first blog, you will learn how to implement the authentication mechanism. In the second blog post, you will learn how to implement […]

Read More

Amazon CloudFront introduces Response Headers Policies

Introduction Amazon CloudFront is a content delivery network (CDN) that delivers static and dynamic web content using a global network of edge locations. Customers benefit from better performance, reliability, and increased security of their web applications by including CloudFront in their architecture. The ability to easily modify and manage response headers has been a common […]

Read More

Serving compressed WebGL websites using Amazon CloudFront, Amazon S3 and AWS Lambda

In this post, you will learn how to deliver compressed WebGL websites to your end users. When requested webpage objects are compressed, the transfer size is reduced, leading to faster downloads, lower cloud storage fees, and lower data transfer fees. Improved load times also directly influence the viewer experience and retention, which will help you […]

Read More

Enabling granular operational visibility for CloudFront with CloudWatch

Amazon CloudFront is a content delivery network (CDN) that delivers static and dynamic web content using a global network of edge locations. CloudFront integrates natively with Amazon CloudWatch to provide monitoring and observability capabilities. With the introduction of CloudFront real-time logs, it is now possible to create highly granular custom metrics in CloudWatch to view […]

Read More

Complying with city-level embargos using Amazon CloudFront

Introduction You may run into occasions where, due to sanctions from governmental organizations like OFAC (Office of Foreign Assets Control), you need to implement granular city-level embargos for your websites. This blog will walk you through an approach to achieving this using Amazon CloudFront geolocation headers and Amazon CloudFront Functions. Note that geographical restrictions at […]

Read More