Static Website Technical Walkthrough

Overview

This solution provides a secure, scalable static website hosting infrastructure using AWS services. The website is hosted on Amazon S3 and delivered globally via Amazon CloudFront with AWS WAF protection.

Architecture Components

• Amazon S3: Hosts the static website content with versioning enabled
• Amazon CloudFront: Content delivery network that provides low-latency access to the website
• AWS WAF: Web Application Firewall that protects the website from common web exploits
• Origin Access Control: Ensures S3 content is only accessible through CloudFront
• CloudWatch Logs: Captures and stores access logs for monitoring and analysis

Security Features

• S3 bucket is configured with public access blocked
• CloudFront uses HTTPS for secure content delivery
• WAF provides protection against common web vulnerabilities
• IAM roles with least privilege permissions

Deployment

The solution is deployed using AWS CloudFormation, which ensures consistent and repeatable infrastructure provisioning.

Monitoring and Logging

• CloudFront access logs are stored in a dedicated S3 bucket
• Real-time logs can be processed and sent to CloudWatch Logs
• CloudWatch alarms can be configured for monitoring