Networking & Content Delivery
Category: Lambda@Edge
Customize 403 error pages from Amazon CloudFront Origin with Lambda@Edge
AWS Web Application Firewall (AWS WAF) is commonly used to protect HTTP and HTTPS requests forwarded to Amazon CloudFront. When you are using this approach, default 403 error pages do not distinguish whether the error came from AWS WAF or the CloudFront Origin. As an AWS WAF and Amazon CloudFront user, you may want to […]
Read MoreCloudFront Migration Series (Part 2): Audible Plus, The Turning Point
Introduction In 2020, users have come to expect a flawless streaming media experience, whether it’s video, music, or audiobooks. Playback must start quickly and be resilient to changes in network availability and bandwidth. To deliver all of this content, you must have a performant, highly available and reliable Content Delivery Network (CDN) to reach customers […]
Read MoreSecuring CloudFront Distributions using OpenID Connect and AWS Secrets Manager
Amazon CloudFront is a CDN that is used to securely deliver content, applications, and APIs to globally dispersed customers with low-latency and high transfer speeds. Amazon CloudFront is ideal for serving-up websites, caching content, and delivering static files to users across the globe. This blog post will allow organizations who host private web apps on Amazon […]
Read MoreSecuring and Accessing Secrets from Lambda@Edge using AWS Secrets Manager
Lambda@Edge is a feature of Amazon CloudFront that lets you run code closer to users of your application, across on the globe, improving performance and reducing latency. This feature is useful for enriching HTTP requests with filters, security headers, and dynamically routing a request to a specific origin. When working with Lambda@Edge, there are situations where […]
Read MoreServing SSE-KMS encrypted content from S3 using CloudFront
Introduction A best practice for your web applications is to use Amazon S3 to store content and Amazon CloudFront to deliver it to users. When building this way, AWS Well-Architected Framework recommends protecting your data at rest and in transit. Encryption is one of protection controls AWS provides you to reduce the risks of unauthorized access, loss, […]
Read MoreUsing multiple content delivery networks for video streaming – part 2
If you are reading part two of this two-part blog series, it probably means that you operate a video streaming service for millions of viewers, with high sensitivity to performance, and you are considering multiple CDNs for your video delivery. In this part, I will guide you through important questions to consider when deploying a […]
Read MoreHandling Redirects@Edge Part 2
In continuation with our series on Handling Redirects@Edge, in this blog post, we will explore how you can leverage Amazon CloudFront, Lambda@Edge and Amazon Simple Storage Service (S3) to offload the origin from URL redirection with more advanced capabilities. As part of this solution, we offer a simple custom-built user interface to define and manage […]
Read MoreHandling Redirects@Edge Part 1
A HTTP URL redirect is a webserver function that redirects a user to a different URL from the one they originally requested. Redirections are useful when you want a short easy to remember URL which when accessed redirects you to the actual landing page. URL shortener services are a good example of this use case. […]
Read MoreAccelerating WordPress with CloudFront using the AWS for WordPress Plugin
AWS for WordPress WordPress is a technological marvel in the number of internet sites it powers and the momentum with which developers actively contribute to the community. Recent estimates put WordPress at powering more than 34% of internet sites, and more than 50,000 plugins are available through WordPress.org covering everything from security enhancements to SEO […]
Read MoreGenerating dynamic error responses in Amazon CloudFront with Lambda@Edge
Amazon CloudFront allows you to create custom error pages for specific HTTP status codes and to change response codes. CloudFront also offers origin failover capability, with which you can easily set up failover logic between combinations of AWS origins or non-AWS custom HTTP origins. This creates minimal interruption in your viewer’s experience. However, while these […]
Read More