Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Amazon S3 static website - Redirect HTTPS to HTTP

Tags:

amazon-web-services

amazon-s3

amazon-cloudfront

I'm about to launch a static website using S3/Cloudfront. I don't need HTTPS for the site, but the current iteration of the website is served over HTTPS and has hundreds of links and indexed URLs that are HTTPS.

I've been searching for hours and can't find a way to redirect our HTTPS URLs to HTTP when only using S3/Cloudfront. Currently the HTTPS URL will refuse the connection instead of redirecting to the HTTP version of the page.

With no Apache it seems it is not possible to do this. Any hints?

like image 223
user3861666 Avatar asked Jul 21 '14 17:07

user3861666

People also ask

Can Amazon S3 run a static website?

After you create a bucket, you can enable static website hosting for your bucket. You can create a new bucket or use an existing bucket. Sign in to the AWS Management Console and open the Amazon S3 console at https://console.aws.amazon.com/s3/ .

How do I enable HTTPS on S3 bucket static Web Hosting?

Back in S3, go to your secondary bucket (www.mywebsite.com), in the Properties tab and under Static Website Hosting set the redirect protocol to HTTPS.

Can S3 serve HTTPS?

Amazon S3 does not support HTTPS access to the website. If you want to use HTTPS, you can use Amazon CloudFront to serve a static website hosted on Amazon S3.

1 Answers

Static website hosting on S3 does not support HTTPS unless you use the full domain path, i.e. example.com.s3-website-us-east-1.amazonaws.com. Since you want to keep your URL, you'll have to use a CloudFront distribution to handle SSL.

  1. Upload your SSL certificate to CloudFront: aws iam upload-server-certificate --server-certificate-name CertificateName --certificate-body file://public_key_certificate_file --private-key file://privatekey.pem --certificate-chain file://certificate_chain_file --path /cloudfront/path/ [1]

  2. Create a cloudfront distribution and configure as so:

    • Origin Domain Name: your s3 bucket's public static website hosting endpoint (not the endpoint that CloudFront autocompletes)
    • Alternate Domain Names (CNAMEs): desired location for your website, e.g. example.com or www.example.com
    • SSL Certificate: Select the SSL certificate you uploaded in step 1.
    • Custom SSL Client Support: Unless you need compatibility for really old clients, select "Only Clients that support Server Name Indication" and save $600.

    If you are redirecting https to s3 redirect, the origin domain should not be the autocomplete bucket, but the static redirect endpoint s3 gives you

  3. Save your distribution. It should show Status "In Progress". It generally takes ~15 minutes before a distribution is "Deployed"; don't move on to step 4 until your distribution is "Deployed".

  4. Verify the distribution works: navigate to the CloudFront distribution via the domain name in the list, e.g. "https//d111111abcdef8.cloudfront.net/". You should see your website.
  5. Change your DNS records to point to the CloudFront distribution instead of the S3 bucket.

[1] if you have trouble adding your certificate to CloudFront check out this article for further information: http://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/SecureConnections.html#cnames-and-https-procedure

like image 174
larkin Avatar answered Oct 05 '22 10:10

larkin
Sign in to Comment

Related questions

Trying to set metadata on Amazon S3 file using s3cmd
Possible to set reply-to address different than from address in grails mail plugin?
How do I assign a created SecurityGroup to an ELB from CloudFormation?
Cross account role for an AWS Lambda function
AWS Cloudfront + Load Balancer, url changes from main domain to load balancer subdomain
How to pivot rows into columns in AWS Athena?
How to set Lambda alarm for specific Lambda using CloudFormation?
Amazon DynamoDB Local - unknown error, exception or failure
Why playing with AWS DynamoDb "Hello world" produces read/write alarms?
Aurora RDS instance can not be stopped
How to add AWS WAF to an ALB via CloudFormation
Why is DynamoDB LastEvaluatedKey depends on the limit of the query?
Make uploaded files to S3 public by default
How to read Elastic Beanstalk Environment Properties in .net?
How to download a file from AWS S3 with version in Command line?
How to make ECR repository public?
Is it okay to use GitHub Secrets with a public repo?
how to get all amazon category products
AWS Lambda Function always returns null (Node/Javascript)?
Is it possible to specify a pattern for an AWS role Trust Relationship

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!