This is an example of how to host and deploy a simple static website in AWS using Amazon S3 and Amazon Cloudfront (optional). The terraform is used for create everything necessary in AWS.
This is a fully scalable example for a static website: Nothing complicated or using over engineering, just simple as it should be.
Why S3?
- Amazon is responsible for serving the content.
- Scale up automatically. No additional configuration or resources are needed.
- High availability. Amazon guarantees 99.99% availability of S3.
- Fast content serving using Cloudfront CDN.
The website could be deployed using the following commands:
git clone https://github.com/PipeInc/check-this-out.git
cd terraform/
terraform init
terraform plan -out terraform.plan
terraform apply "terraform.plan"The output should be like:
Apply complete! Resources: 1 added, 0 changed, 0 destroyed.
website_url = "http://<my-bucket>-website.s3-website-us-east-1.amazonaws.com"
Use the url to access the website. 🚀
- AWS Account
- AWS Access Key
- AWSCLI - configure to use default profile (See here)
- Terraform 1.1.4+
The terraform is the responsible to create the resources in the AWS, you can choose to use terraform to deploy your code or not and also to create the cloudfront distribution or not. By default terraform deploys the code but not the cloudfront. Check the Conditional flags for more information.
With all tools installed/configure let's start by cloning this repo and initializing terraform:
$ cd terraform/ # Change working directory to ./terraform
$ terraform init # Terraform will initialize a local state file and download all required modules.The next step is check all required changes, terraform plan creates an execution plan, which lets you preview the upcoming changes. Reads the current state file and compare with the current configuration to propose a set of changes to make in remote objects.
terraform plan -out terraform.planThis creates the file terraform.plan with all necessary changes.
If you are satisfied with the changes, use the terraform apply to apply.
⚠️ Keep in mind: charges could be applied in your AWS account. Check the AWS Free Tier page for more information.
terraform apply "terraform.plan"Terraform creates all necessary resources on AWS and give you the website url.
If necessary you can use the flags -var=deploy=true|false and -var=cdn=true|false in terraform plan and applyt command. It allows terraform deploy your code to S3 and also enable the Amazon Cloufront CDN on your website. Check the README file into terraform directory for details.
Examples:
# Deploy and create cloudfront:
terraform apply "terraform.plan" -var=cdn=true
# Create the AWS resources but not deploy the code:
terraform apply "terraform.plan" -var=deploy=false
# Or you can combine all: Create cloudfront but nor deploy the code:
terraform apply "terraform.plan" -var=cdn=true -var=deploy=falseFor Continous Integration and quality control the pre-commit with a set of hooks are being used.
The pre-commit hooks will make use of the standard linter, formatter and security checks to guarantee the quality of the code.
The file .pre-commit-config.yaml is the configuration file for pre-commit stuffs and the file .tflint.hcl are the rules for the tflint plugin.
Hooks
- terraform-fmt: Reformat all Terraform configuration files to a canonical format
- terraform-validate: Validates all Terraform configuration files.
- tflint: Validates all Terraform configuration files with TFLint
- terraform-docs-go: Generate documentation from Terraform modules in markdow format.
- terraform_tfsec: Perform static analysis of terraform templates to spot potential security issues using TFSec.
The idea here is run all tests inside a docker container, the code will be copied and tested during the build process. If docker build complete successfully the code are good, if it fails then something should be reviewed.
The Dockerbuild file contains everything necessary to run. It could be implemented in CI step in pipeline.
- Enable s3 logging web traffic;
- Enable s3 object versioning;
- Enable s3 object encryption;
- CI/CD code{commit,build,pipeline} / jenkins
The sample website used in this repo is from Free-CSS.
All of the free CSS templates, layouts & menus that are featured within Free CSS are distributed under some form of GNU/GPL, Creative Commons, author specific or public domain end user licence.