Correct S3 + Cloudfront CORS Configuration?

by

On June 26, 2014 AWS released proper Vary: Origin behavior on CloudFront so now you just

  1. Set a CORS Configuration for your S3 bucket including

    <AllowedOrigin>*</AllowedOrigin>

  2. In CloudFront -> Distribution -> Behaviors for this origin

    • Allowed HTTP Methods: +OPTIONS
    • Cached HTTP Methods +OPTIONS
    • Cache Based on Selected Request Headers: Whitelist the Origin header.

  3. Wait for ~20 minutes while CloudFront propagates the new rule

Now your CloudFront distribution should cache different responses (with proper CORS headers) for different client Origin headers.

More Related Contents:

  1. Font from origin has been blocked from loading by Cross-Origin Resource Sharing policy
  2. Receive AccessDenied when trying to access a reload or refresh or one in new tab in angular 5
  3. AWS CloudFront: Font from origin has been blocked from loading by Cross-Origin Resource Sharing policy
  4. Amazon CloudFront Latency
  5. S3 – Access-Control-Allow-Origin Header
  6. What is the algorithm to compute the Amazon-S3 Etag for a file larger than 5GB?
  7. Amazon S3 CORS (Cross-Origin Resource Sharing) and Firefox cross-domain font loading
  8. Amazon S3 boto – how to create a folder?
  9. Set cache-control for entire S3 bucket automatically (using bucket policies?)
  10. Exporting data from Google Cloud Storage to Amazon S3
  11. Quick way to list all files in Amazon S3 bucket?
  12. Cloudfront redirect www to naked domain with ssl [closed]
  13. How to get the md5sum of a file on Amazon’s S3
  14. Is there an S3 policy for limiting access to only see/access one bucket?
  15. How do I have an S3 bucket return 404 (instead of 403) for a key that does not exist in the bucket/
  16. Supporting HTTPS URL redirection with a single CloudFront distribution
  17. AWS S3 copy files and folders between two buckets
  18. Getting started with secure AWS CloudFront streaming with Python
  19. How to call Amazon S3 bucket using postdata preSigned Url to upload a file using Karate
  20. Serving gzipped CSS and JavaScript from Amazon CloudFront via S3
  21. Caching effect on CORS: No ‘Access-Control-Allow-Origin’ header is present on the requested resource
  22. Getting Access Denied when calling the PutObject operation with bucket-level permission
  23. S3 Error: The difference between the request time and the current time is too large
  24. Best way to move files between S3 buckets?
  25. AWS CloudFront redirecting to S3 bucket
  26. Amazon S3: Static Web Sites: Custom Domain or Subdomain
  27. What are valid S3 key names that can be accessed via the S3 rest API?
  28. Why are S3 and Google Storage bucket names a global namespace?
  29. Restrict List of Buckets for a Specific User
  30. upload file from angularjs directly to amazon s3 using signed url

Leave a Comment