Production-style static website deployment on AWS using Terraform, Amazon S3, CloudFront CDN, and Origin Access Control (OAC).
This project demonstrates Infrastructure as Code (IaC), secure content delivery, cloud architecture fundamentals, and AWS best practices through a fully automated Terraform deployment.
The website is deployed through Amazon CloudFront and delivered globally using AWS edge locations.
https://d28xs5hc1on3kz.cloudfront.net
The objective of this project was to design and deploy a secure static website architecture on AWS using Terraform.
The solution leverages:
- Terraform for Infrastructure as Code
- Amazon S3 for static website hosting
- Amazon CloudFront for global content delivery
- Origin Access Control (OAC) for secure S3 access
- IAM Policies for controlled permissions
- GitHub for version control and project documentation
The architecture follows AWS security best practices by ensuring website content is delivered through CloudFront rather than accessed directly from the S3 bucket.
flowchart LR
U[π€ User]
CF[π CloudFront CDN]
OAC[π Origin Access Control]
S3[πͺ£ Amazon S3 Bucket]
WEB[π Static Website]
U --> CF
CF --> OAC
OAC --> S3
S3 --> WEB
| Service | Purpose |
|---|---|
| Amazon S3 | Static website hosting |
| Amazon CloudFront | Global content delivery |
| Origin Access Control (OAC) | Secure CloudFront-to-S3 communication |
| IAM Policies | Access management |
| Terraform | Infrastructure provisioning |
| GitHub | Version control and project documentation |
- Created GitHub repository
- Built Terraform project structure
- Configured VS Code environment
Configured:
- AWS Provider
- Terraform Variables
- Terraform Outputs
- State Management
Provisioned:
- S3 Bucket
- Ownership Controls
- Public Access Configuration
- Static Website Configuration
Uploaded:
- index.html
- error.html
using Terraform-managed S3 objects.
Provisioned:
- CloudFront Distribution
- Origin Access Control (OAC)
- HTTPS Redirection
- Secure S3 Access
Verified:
- Terraform State
- S3 Object Uploads
- CloudFront Distribution
- Website Accessibility
- Infrastructure Outputs
terraform init
terraform fmt
terraform validate
terraform plan
terraform apply
terraform state list- Infrastructure as Code (Terraform)
- Amazon S3 Static Website Hosting
- CloudFront CDN Deployment
- Origin Access Control (OAC)
- IAM Policy Configuration
- AWS Security Best Practices
- Git & GitHub Workflow
- Cloud Infrastructure Documentation
- Troubleshooting & Validation
- Cloud Architecture Fundamentals
flowchart LR
FN[π Fibre Network Engineering]
SO[π‘ Security Operations]
TS[π Technical Support]
CE[β Cloud Engineering]
FN --> SO --> TS --> CE
Progressed from fibre network engineering to security operations and technical support, building strong expertise in networking, system integration, troubleshooting, and infrastructure technologies.
Currently focused on cloud engineering, designing scalable AWS solutions using Terraform, automation, cloud-native architecture principles, and AWS best practices.
β Fully automated infrastructure deployment using Terraform
β Secure CloudFront-to-S3 architecture using Origin Access Control (OAC)
β Global content delivery through Amazon CloudFront
β Infrastructure tracked and managed through Terraform State
β Version-controlled deployment using GitHub
β Production-style AWS static website architecture
β Portfolio-ready cloud engineering project
Cloud Engineering Graduate | AWS & Terraform Practitioner
Interested in Cloud Support Engineering, Cloud Operations, Site Reliability Engineering (SRE), Infrastructure Engineering, and Cloud Consulting opportunities.