About This Blog

This blog is a demo project built to showcase AWS infrastructure best practices using Terraform. Every piece of the stack — from the S3 bucket to the CloudFront distribution to the WAF rules — is defined as code and deployed automatically.

The goal is to demonstrate that even a simple static website can follow enterprise-grade security and operational practices without adding complexity or cost.

The Stack

Terraform Amazon S3 CloudFront ACM WAFv2 Route 53 DynamoDB Origin Access Control

The infrastructure is organized into logical Terraform files: provider config, S3 buckets, CloudFront distribution, ACM certificates, WAF rules, logging, state management, and deployment automation. All resources are tagged consistently and follow AWS Well-Architected best practices.

Source code and Terraform configurations are available for reference. Feel free to use this as a starting point for your own projects.