CREATING A STATIC WEBSITE WITH S3, Route 53, CloudFront and Certificate Manager.

Oluwaseun Olaleye - Oct 26 - - Dev Community

Image description

USE CASE
My manager has assigned me a project to design and deploy a scalable, highly available, and secure e-commerce website, ensuring optimal performance and user experience.

Prerequisites

  • AWS free account
  • Registered domain name

Introduction

Welcome to our comprehensive guide on building a scalable and secure multi-tier architecture using Amazon S3, Route 53, Certificate Manager, and CloudFront. In this article, I will walk you through each step, explaining the process in detail.

Definition of Services

  1. Amazon S3 (Simple Storage Service): A highly durable, scalable, and secure object storage service for storing and retrieving data.

  2. Amazon Route 53: A highly available and scalable Domain Name System (DNS) service that routes end users to Internet applications.

  3. Certificate Manager:is a service offered by AWS that simplifies the provisioning, management, and deployment of Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates for AWS services.

  4. CloudFront:Amazon CloudFront is a fast content delivery network service that securely distributes web content to users globally.

Let's dive in!
Firstly, let's create S3 bucket, this is where our website will be hosted.

Image description

I configured my s3 bucket name to be the same with my domain name.
Image description

We will uncheck "Block all public access option", allowing our website to be accessible to the public.

Image description

Image description

Now that our bucket is set up, we will proceed to upload our HTML file into it.

Image description

Image description

Image description

Image description

Now, let's configure our bucket permissions to ensure secure access.

Image description

Image description

Next, let's enable static website hosting for our s3 bucket.

Image description

Image description

Image description

The screenshot below reveals that our website is currently unencrypted; to address this, we will obtain and implement an SSL/TLS certificate.

Image description

CERTIFICATE MANAGER
Next, we will encrypt our website's data with an SSL/TLS certificate, protecting customer information.

Image description

Image description

Image description

Image description

ROUTE 53
We will host our Domain Name system(DNS) in Amazon route 53 and create a CNAME record.

Image description

Image description
We are going to add this Nameserver to our domain provider.

Next thing is to add the Certificate Manager CNAME to Route 53,ensuring secure domain validation and SSL/TLS certificate issuance for the domain.

Image description

Image description

Image description

CLOUDFRONT
Next, we will use our static website's URL as the origin domain for our CloudFront distribution.

Image description

Image description

Image description

Image description

Following the successful creation of our CloudFront distribution, we navigated back to Route 53 to configure an A record, associating our domain name with the CloudFront distribution.

Image description

Image description

. . . .