Upon successful authentication, a cookie (named TOKEN) with the value of a signed JWT is set and the user redirected back to the originally requested path. Upon each request, Lambda@Edge checks the JWT for validity (signature, expiration date, audience and matching hosted domain) and will redirect the user to configured provider's login when their session has timed out. If your CloudFront distribution is pointed at a S3 bucket, configure origin access identity so S3 objects can be stored with private permissions. (Origin access identity requires the S3 ACL owner be the account owner. Use our s3-object-owner-monitor Lambda function if writing objects across multiple accounts.) Enable SSL/HTTPS on your CloudFront distribution; AWS Certificate Manager can be used to provision a no-cost certificate. Session duration is defined as the number of hours that the JWT is valid for. After session expiration, cloudfront-auth will redirect the user to the configured provider to re-authenticate.

Features

  • An AWS CloudFront Lambda@Edge function
  • Authenticate requests using Google Apps
  • For Microsoft, Auth0, OKTA, and GitHub login
  • If your CloudFront distribution is pointed at a S3 bucket, configure origin access identity so S3 objects can be stored with private permissions
  • Origin access identity requires the S3 ACL owner be the account owner
  • Enable SSL/HTTPS on your CloudFront distribution

Project Samples

cloudfront-auth Screenshot 1

Project Activity

See All Activity >

Categories

Security, Cloud Services

License

ISC License

Follow cloudfront-auth

cloudfront-auth Web Site

Other Useful Business Software
Build Securely on AWS with Proven Frameworks Icon
Build Securely on AWS with Proven Frameworks

Lay a foundation for success with Tested Reference Architectures developed by Fortinet’s experts. Learn more in this white paper.

Moving to the cloud brings new challenges. How can you manage a larger attack surface while ensuring great network performance? Turn to Fortinet’s Tested Reference Architectures, blueprints for designing and securing cloud environments built by cybersecurity experts. Learn more and explore use cases in this white paper.
Download Now
Rate This Project
Login To Rate This Project

User Reviews

Be the first to post a review of cloudfront-auth!

Additional Project Details

Programming Language

JavaScript

Related Categories

JavaScript Security Software, JavaScript Cloud Services Software

Registered

2023-02-20
Report inappropriate content