VpcOrigin

Source: src/AWS/CloudFront/VpcOrigin.ts

A CloudFront VPC origin.

VpcOrigin lets a CloudFront distribution route to a private Application Load Balancer, Network Load Balancer, or EC2 instance inside a VPC without exposing it to the public internet. Reference the resulting vpcOriginId from a distribution origin’s vpcOriginConfig.

Creating VPC Origins

Private ALB Origin

const vpcOrigin = yield* VpcOrigin("AppOrigin", {
  arn: loadBalancer.arn,
  httpPort: 80,
  httpsPort: 443,
  originProtocolPolicy: "https-only",
});

Attaching a VPC Origin to a Distribution

const distribution = yield* Distribution("AppCdn", {
  origins: [
    {
      id: "app",
      domainName: loadBalancer.dnsName,
      vpcOriginConfig: { vpcOriginId: vpcOrigin.vpcOriginId },
    },
  ],
  defaultCacheBehavior: {
    targetOriginId: "app",
    viewerProtocolPolicy: "redirect-to-https",
  },
});