Cloudfront Security
Security for CloudFront
- You can restrict who can access your distribution
- Whitelist: Allow some countries to access content
- Blacklist: disallow certain countries from accessing
- 2 Types of security
- Viewer Protocol Policy
- redirect http to https
- or use https only
- Origin protocol policy (HTTP or S3)
- HTTPS (Hypertext transfer protocol secure) only
- or Match Viewer protocol
- (HTTP -> HTTP, HTTPS -> HTTPS)
- Viewer Protocol Policy
- Note: S3 bucket websites don't support HTTPS