Akhan Zhakiyanov

Docusaurus v3 is out, but official docs are still lacking deployment to AWS as option.

Let me fix this and guide you how to create most secure and up to date approach with AWS S3 and Cloudfront.

Docusaurus is static website generator, so let's review options AWS offers us to serve it.

Quite often I need to create AWS ACM certificate and do DNS validation using Pulumi.

Pulumi aws.acm.CertificateValidation DNS example only show basic and naive implementation:

• hardcoded single domain validation ¯_(ツ)_/¯
• will fail if you try to validated wildcard and apex domain simultaneously

* creating Route 53 Record: InvalidChangeBatch: [Tried to create resource record set [name='_f22110437fea5500aa0f8bf286aed7c7.howto.ahanoff.dev.', type='CNAME'] but it already exists]

Today I'll show how to create validation that works for any domain

I will create AWS ACM certificate with the following conditions:

• multi domain certificate
• validates wildcard domain: *.howto.ahanoff.dev
• validates apex domain: howto.ahanoff.dev

Recently with team members we discovered https://www.allero.io/ that does CI/CD security validation:

• identify plain text passwords
• identify potentially malicious code execution
• etc

Despite me being quite sceptical about it initially it found one issue using default rules

If you are working with AWS ECS, you might know about ECS task healthcheck. AWS documentation suggests to use curl in command:

[ "CMD-SHELL", "curl -f http://localhost/ || exit 1" ]

I usually try to minimize container image size, thus my first choice for base image is Alpine.

Unfortunately, it doesn't come with curl installed out of the box. It only includes wget.

To be restored from archive