Last active
May 19, 2020 13:28
-
-
Save AndrewBestbier/f7561f79aca569c8d203180dc4dabd04 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import * as cdk from '@aws-cdk/core'; | |
| import * as s3 from '@aws-cdk/aws-s3'; | |
| import * as cloudfront from '@aws-cdk/aws-cloudfront'; | |
| import * as route53 from '@aws-cdk/aws-route53'; | |
| import * as certificateManager from '@aws-cdk/aws-certificatemanager'; | |
| export class InfrastructureStack extends cdk.Stack { | |
| constructor(scope: cdk.Construct, id: string, props?: cdk.StackProps) { | |
| super(scope, id, props); | |
| const bucket = new s3.Bucket(this, 'WebsiteBucket', { | |
| bucketName: 'andrew-bestbier-cdk-blog', | |
| websiteIndexDocument: 'index.html', | |
| }); | |
| // 1 | |
| const hostedZone = route53.HostedZone.fromLookup(this, 'HostedZone', { | |
| domainName: 'andrew-bestbier-cdk-blog.com', | |
| }); | |
| // 2 | |
| const certificate = new certificateManager.DnsValidatedCertificate(this, 'Certificate', { | |
| domainName: 'andrew-bestbier-cdk-blog.com', | |
| hostedZone, | |
| region: 'us-east-1' | |
| }); | |
| const cloudFrontOAI = new cloudfront.OriginAccessIdentity(this, 'OAI'); | |
| const distribution = new cloudfront.CloudFrontWebDistribution(this, 'MyDistribution', { | |
| originConfigs: [ | |
| { | |
| s3OriginSource: { | |
| s3BucketSource: bucket, | |
| originAccessIdentity: cloudFrontOAI, | |
| }, | |
| behaviors: [{ isDefaultBehavior: true }] | |
| } | |
| ] | |
| }) | |
| bucket.grantRead(cloudFrontOAI.grantPrincipal); | |
| } | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment