terraform-aws-layer-statics/main.tf at master · genstackio/terraform-aws-layer-statics · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
module "website" {
  source              = "genstackio/website/aws"
  version             = "0.5.0"
  name                = var.name
  bucket_name         = var.bucket_name
  zone                = var.dns_zone
  dns                 = var.dns
  error_403_page_path = "/403.html"
  error_404_page_path = "/404.html"
  geolocations        = []
  bucket_cors         = true
  cache_policy_id     = aws_cloudfront_cache_policy.cache.id
  origin_request_policy_id = data.aws_cloudfront_origin_request_policy.managed_cors_s3_origin.id
  response_headers_policy_id = data.aws_cloudfront_response_headers_policy.managed_cors_with_preflight_and_securityheaders.id
  providers           = {
    aws     = aws
    aws.acm = aws.acm
  }
}
module "website2" {
  source              = "genstackio/website/aws"
  version             = "0.5.0"
  name                = var.name2
  bucket_name         = var.bucket2_name
  zone                = var.dns2_zone
  dns                 = var.dns2
  error_403_page_path = "/403.html"
  error_404_page_path = "/404.html"
  geolocations        = []
  bucket_cors         = true
  cache_policy_id     = aws_cloudfront_cache_policy.cache.id
  origin_request_policy_id = data.aws_cloudfront_origin_request_policy.managed_cors_s3_origin.id
  response_headers_policy_id = data.aws_cloudfront_response_headers_policy.managed_cors_with_preflight_and_securityheaders.id
  providers           = {
    aws     = aws
    aws.acm = aws.acm
  }
}
module "website3" {
  source              = "genstackio/website/aws"
  version             = "0.5.0"
  name                = var.name3
  bucket_name         = var.bucket3_name
  zone                = var.dns3_zone
  dns                 = var.dns3
  geolocations        = []
  bucket_cors         = true
  cache_policy_id     = aws_cloudfront_cache_policy.cache.id
  origin_request_policy_id = data.aws_cloudfront_origin_request_policy.managed_cors_s3_origin.id
  response_headers_policy_id = data.aws_cloudfront_response_headers_policy.managed_cors_with_preflight_and_securityheaders.id
  providers           = {
    aws     = aws
    aws.acm = aws.acm
  }
}

resource "aws_cloudfront_cache_policy" "cache" {
  name        = "${var.name}-cache-policy"

  min_ttl                  = 0
  default_ttl              = 3600
  max_ttl                  = 86400

  parameters_in_cache_key_and_forwarded_to_origin {
    enable_accept_encoding_brotli = true
    enable_accept_encoding_gzip   = true

    cookies_config {
      cookie_behavior = "none"
    }
    headers_config {
      header_behavior = "none"
    }
    query_strings_config {
      query_string_behavior = "none"
    }
  }
}