Configure HTTP Security headers with CloudFront Functions

A couple of weeks ago, AWS released CloudFront Functions — a “true edge” compute capability for the CloudFront. It is “true edge” because Functions work on 200+ edge locations (link to doc) while its predecessor, the [email protected], runs on a small number of regional edge caches. One of the use cases for [email protected] was adding security HTTP headers (it’s even listed on the product page), and now there is one more way to make it using CloudFront Functions....

May 21, 2021 · Serhii Vasylenko

Manage Ansible playbook secrets with AWS services

Lookup plugins for Ansible allow you to do a lot of cool things. One of them is to securely pass sensitive information to your playbooks. If you manage some apps in AWS with Ansible, then using Parameter Store or Secrets Manager along with it might greatly improve your security. Variables with SSM Parameter Store Let’s say you have some variables defined in ‘defaults/main.yaml’ file of your role or maybe in group_vars....

August 6, 2020 · Serhii Vasylenko