- 新しい順
- 投票が多い順
- コメントが多い順
Yeah,
You're right, creating thousands of CloudFront distributions and certificates for each user isn't ideal due to limitations and management overhead.
Actually it is having some limitations as follows:
Limitations:
-
Certificate per Distribution: CloudFront allows only one certificate per distribution.
-
Distribution Limit: There's a soft limit of 200 distributions per account (can be increased with AWS Support).
-
Origin Access Identity (OAI) Limit: There's a soft limit of 100 distributions per OAI (can be increased with AWS Support).
For Better Approaches Go through these considerations:
-
Wildcard SSL Certificate: Utilize a wildcard SSL certificate from AWS Certificate Manager (ACM) to secure multiple domains under a single certificate. This covers subdomains of your main domain (e.g., *.hlodomain.com).
-
Lambda@Edge for Domain Routing: Implement a Lambda@Edge function at the CloudFront edge. This function inspects the incoming hostname (user's domain) and routes the request to the appropriate prefix within your single S3 bucket. Here's a helpful guide: https://docs.aws.amazon.com/lambda/latest/dg/lambda-edge.html