Amazon web services 地形可以';t创建一个CloudFront';s具有静态S3网站终结点的源
我有一个使用两个模块的计划:Amazon web services 地形可以';t创建一个CloudFront';s具有静态S3网站终结点的源,amazon-web-services,terraform,terraform-provider-aws,Amazon Web Services,Terraform,Terraform Provider Aws,我有一个使用两个模块的计划:bucket网站和cloudfront网站 除了bucket模块中的其他内容(策略等),还有以下资源用于创建bucket并将其用作网站: resource "aws_s3_bucket" "bucket-website" { bucket = "${var.bucket_name}" region = "${var.region}" website { index_document = "index.html" } tags = "${
bucket网站cloudfront网站resource "aws_s3_bucket" "bucket-website" {
bucket = "${var.bucket_name}"
region = "${var.region}"
website {
index_document = "index.html"
}
tags = "${local.common_tags}"
}
output "website_endpoint" {
value = "${aws_s3_bucket.bucket-website.website_endpoint}"
}
cloudfront网站resource "aws_cloudfront_distribution" "distribution" {
.....
origin {
domain_name = "${var.domain_name}"
origin_id = "${var.domain_name}"
}
.....
}
domain_name = "${module.bucket-website.website_endpoint}"
terraform apply origin.123456.domain_name: "" => "foo.s3-website-eu-west-1.amazonaws.com"
origin.123456.origin_id: "" => "foo.s3-website-eu-west-1.amazonaws.com"
* aws_cloudfront_distribution.distribution: error creating CloudFront Distribution: InvalidArgument: The parameter Origin DomainName does not refer to a valid S3 bucket.
我已经没有主意了。一切看起来都很好。端点是正确的。我检查了其他示例,它们也使用了
${aws\u s3\u bucket..website\u endpoint}origin custom_origin_config {
http_port = "80"
https_port = "443"
origin_protocol_policy = "http-only"
origin_ssl_protocols = ["TLSv1", "TLSv1.1", "TLSv1.2"]
}
如何解决创建源站访问标识的问题,以便只有CloudFront发行版可以访问您的S3存储桶?