@architect/deploy/src/sam/02-after/00-get-app-apex/cloudfront-create.js

Deploys @architect projects

module.exports = function createCloudFrontDistribution (params, callback) {
  let { aws, domain: DomainName, insecure, inventory, stage } = params

  let CallerReference = `edge-${Date.now()}`

  let origin = {
    Id: CallerReference,
    DomainName,
    CustomHeaders: { Quantity: 0, Items: [] },
    CustomOriginConfig: {
      HTTPPort: 80,
      HTTPSPort: 443,
      OriginProtocolPolicy: `http${insecure ? '' : 's'}-only`,
      OriginSslProtocols: {
        Quantity: 3,
        Items: [ 'TLSv1', 'TLSv1.1', 'TLSv1.2' ],
      },
      OriginReadTimeout: 30,
      OriginKeepaliveTimeout: 5,
    },
  }

  // Add origin path for REST APIs
  let legacyAPI = inventory.inv.aws.apigateway === 'rest'
  if (legacyAPI) {
    origin.OriginPath = `/${stage}`
  }

  let config = {
    DistributionConfig: {
      CallerReference,
      Comment: `Created ${new Date(Date.now()).toISOString()}`,
      Enabled: true,
      IsIPV6Enabled: true,
      HttpVersion: 'http2',
      PriceClass: 'PriceClass_All',
      Aliases: { Quantity: 0, Items: [] },
      CacheBehaviors: { Quantity: 0, Items: [] },
      CustomErrorResponses: { Quantity: 0, Items: [] },
      Origins: { Quantity: 1, Items: [ origin ] },

      DefaultCacheBehavior: {
        TargetOriginId: CallerReference,
        ForwardedValues: {
          QueryString: true,
          Cookies: { Forward: 'all' },
          Headers: {
            Quantity: 0,
            Items: [],
          },
          QueryStringCacheKeys: {
            Quantity: 0,
            Items: [],
          },
        },
        TrustedSigners: {
          Enabled: false,
          Quantity: 0,
          Items: [],
        },
        ViewerProtocolPolicy: 'redirect-to-https',
        MinTTL: 0,
        AllowedMethods: {
          Quantity: 7,
          Items: [ 'GET', 'HEAD', 'DELETE', 'POST', 'PATCH', 'PUT', 'OPTIONS' ],
          CachedMethods: {
            Quantity: 2,
            Items: [ 'GET', 'HEAD' ],
          },
        },
        SmoothStreaming: false,
        DefaultTTL: 86400,
        MaxTTL: 31536000,
        Compress: true, // Important!
        LambdaFunctionAssociations: { Quantity: 0, Items: [] },
        FieldLevelEncryptionId: '',
      },

      ViewerCertificate: {
        CloudFrontDefaultCertificate: true,
        MinimumProtocolVersion: 'TLSv1.2_2021', // AWS recommended setting ¯\_(ツ)_/¯
      },

      Restrictions: {
        GeoRestriction: {
          RestrictionType: 'none',
          Quantity: 0,
          Items: [],
        },
      },
    },
  }

  aws.cloudfront.CreateDistribution(config)
    .then(result => callback(null, result))
    .catch(callback)
}