From e69c679108cc77c28ba53630cf0f598ff0d964a5 Mon Sep 17 00:00:00 2001 From: Colin Copeland Date: Tue, 14 Jan 2025 14:30:11 -0500 Subject: [PATCH] configure production CF distribution Co-authored-by: Ronard --- deploy/group_vars/cdn.yml | 2 +- deploy/host_vars/production.yml | 2 +- deploy/stack/cloudfront.yml | 8 +++++--- 3 files changed, 7 insertions(+), 5 deletions(-) diff --git a/deploy/group_vars/cdn.yml b/deploy/group_vars/cdn.yml index f6a9245c..0f27d09c 100644 --- a/deploy/group_vars/cdn.yml +++ b/deploy/group_vars/cdn.yml @@ -9,7 +9,7 @@ cloudformation_stack_template_bucket: 'aws-web-stacks-trafficstops' cloudformation_stack_template_bucket_path: 'templates/cdn.yml' cloudformation_stack_template_local_path: '{{ playbook_dir + "/stack/cloudfront.yml" }}' cloudformation_stack_template_parameters: - AppCloudFrontCertArn: arn:aws:acm:us-east-1:606178775542:certificate/379950bb-4b29-4308-8418-122674fe1076 + AppCloudFrontCertArn: arn:aws:acm:us-east-1:606178775542:certificate/5bcc16cb-7ca3-4277-8992-a4e20500cc0b AppCloudFrontForwardedHeaders: "Host,Authorization" DomainName: "{{ cloudfront_domain_name }}" AppCloudFrontOriginDomainName: "{{ cloudfront_domain_name_origin }}" diff --git a/deploy/host_vars/production.yml b/deploy/host_vars/production.yml index 23903d22..f274c731 100644 --- a/deploy/host_vars/production.yml +++ b/deploy/host_vars/production.yml @@ -11,7 +11,7 @@ k8s_ingress_tls_domains_extra: env_contact_us_emails: - wcarpenter@forwardjustice.org -env_cache_cloudfront_distribution_id: "" # TODO: Set this value once the CloudFront distribution is created +env_cache_cloudfront_distribution_id: "ERRFDXQVT6ZBM" database_password: !vault | $ANSIBLE_VAULT;1.1;AES256 diff --git a/deploy/stack/cloudfront.yml b/deploy/stack/cloudfront.yml index 463b02ee..c9da4876 100644 --- a/deploy/stack/cloudfront.yml +++ b/deploy/stack/cloudfront.yml @@ -1,6 +1,6 @@ # This Cloudformation stack template was generated by # https://github.com/caktus/aws-web-stacks -# at 2024-11-21 16:16:24.698582 +# at 2025-01-14 14:14:07.595026 # with parameters: # USE_CLOUDFRONT = on @@ -140,7 +140,10 @@ Resources: DefaultTTL: 86400 MaxTTL: 31536000 MinTTL: 0 - Name: AppCachePolicy + Name: !Join + - '-' + - - AppCachePolicy + - !Ref 'AWS::StackName' ParametersInCacheKeyAndForwardedToOrigin: CookiesConfig: CookieBehavior: none @@ -245,4 +248,3 @@ Resources: Value: !Ref 'AWS::StackName' ValidationMethod: !Ref 'CertificateValidationMethod' Type: AWS::CertificateManager::Certificate -