1回答
- 新しい順
- 投票が多い順
- コメントが多い順
0
Hello.
Amplify does not directly support AWS WAF, so you need to link AWS WAF to CloudFront.
https://docs.aws.amazon.com/prescriptive-guidance/latest/patterns/enable-aws-waf-for-web-applications-hosted-by-aws-amplify.html
For AWS managed rules, I think the "Bot Control" rule group below will help you block bots.
https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-bot.html
Also, in this case, if you think that access from people other than the client is unnecessary, I thought that the following "IP reputation rule groups" might be useful.
https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-ip-rep.html