TechQA.

Restricting CloudFront CORS to custom domain

42 views Asked by At

I am trying to restrict the access to my CloudFront distribution to my custom domain as in, it will only serve to www.example.com, if a request comes from www.leech-domain.com it should return a 403 or whatever. The cloudfront servers resources from an s3 bucket.

I've configured cloudfront like this: CloudFront config In which the Response Headers policy is: Response Headers Policy The s3 bucket has the following CORS:

[
    {
        "AllowedHeaders": [
            "*"
        ],
        "AllowedMethods": [
            "GET",
            "HEAD"
        ],
        "AllowedOrigins": [
            "https://www.example.com",
            "https://subdomain.example.com"
        ],
        "ExposeHeaders": []
    }
]
amazon-s3 cors amazon-cloudfront cdn cross-origin-resource-policy
Original Q&A
0

There are 0 answers

Related Questions in AMAZON-S3

Related Questions in CORS

Related Questions in AMAZON-CLOUDFRONT

Related Questions in CDN

Related Questions in CROSS-ORIGIN-RESOURCE-POLICY

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions