Upgrade to Pro — share decks privately, control downloads, hide ads and more …

CloudFront use cases - noteの事例 -

Retu Fukui
June 12, 2019
Technology
0
8.2k

CloudFront use cases - noteの事例 -

2019/06/12 note engineer meetup #3 (https://pieceofcake.connpass.com/event/128607/) でお話しました

Retu Fukui

June 12, 2019
Tweet

More Decks by Retu Fukui

See All by Retu Fukui
EMになって最初の失敗談 - コミュニケーション編 -
fukuiretu
1
430
問い合わせ対応当番を自動化で業務効率化している話
fukuiretu
0
500
サーバーレスで始める ゆるふわデータ基盤 - noteの事例 -
fukuiretu
1
1.4k
191109_sacss.pdf
fukuiretu
1
2k
noteをNuxt.jsで再構築した話 -2nd-
fukuiretu
6
4.6k
181117_wannatech.pdf
fukuiretu
1
450
noteをNuxt.jsで再構築した話
fukuiretu
22
47k
フロントエンド刷新中のnoteの開発環境について
fukuiretu
6
7.3k
フロントエンド初学者のためのNuxt.jsの歩き方
fukuiretu
3
6.1k

Other Decks in Technology

See All in Technology
TechNight#71 - Oracle Database 23c 新機能#1 JSON関連新機能
oracle4engineer
PRO
0
170
【2023】SWR vs TanStack Query
ytaisei
1
250
クラウドサイン事業本部 プロダクト組織 紹介資料
bengo4com
0
220
マルチプロダクト運用におけるSREのあり方/SRE NEXT 2023-link-and-motivation
lmi
0
240
Customer-Centricity Unleashed: Transforming Businesses with LINE Tech
linedevth
1
190
大学・高等専門学校の教職員の方が ChatGPT について最低限知っておきたいこと
dahatake
1
230
SREを以てセキュリティエンジニアリングを制す / SRE, Security Engineering, and You
lmt_swallow
3
800
Develop Sales Automation Workflow on LINE
linedevth
0
210
セキュアエレメントによるWireGuardのセキュリティ強化
kmwebnet
0
150
Google Cloud Updates 2023/08/16 - 2023/08/31
no24oka
1
130
サーバーを超えて: 開発者のために作られたTiDB ServerlessとChat2Query
pingcap0315
0
180
30点で打席に立つ
konifar
52
34k

Featured

See All Featured
Stop Working from a Prison Cell
hatefulcrawdad
265
18k
Navigating Team Friction
lara
177
12k
Put a Button on it: Removing Barriers to Going Fast.
kastner
56
2.7k
The MySQL Ecosystem @ GitHub 2015
samlambert
240
11k
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
aki_iinuma
36
22k
Automating Front-end Workflow
addyosmani
1354
200k
Build The Right Thing And Hit Your Dates
maggiecrowley
23
1.7k
How New CSS Is Changing Everything About Graphic Design on the Web
jensimmons
215
12k
How GitHub (no longer) Works
holman
300
140k
Web Components: a chance to create the future
zenorocha
304
41k
Art, The Web, and Tiny UX
lynnandtonic
285
18k
BBQ
matthewcrist
76
8.4k

Transcript

  1. ෱Ҫ྽
    @fukuiretu
    2019.06.12
    OPUFFOHJOFFSNFFUVQ
    $MPVE'SPOU
    VTFDBTFT
    OPUFͷࣄྫ

    View Slide

  2. ࣗݾ঺հ
    Engineer
    Full Remote Worker
    piece of cake, inc.
    ೖࣾ
    ੨৿ݝ߂લࢢࡏॅ
    3VCZPO3BJMT
    /VYUKT
    "84 @r82
    @fukuiretu
    @fukuiretu
    ෱Ҫ྽

    View Slide

  3. ΞδΣϯμ
    OPUFͷΠϯϑϥߏ੒
    $'Λར༻͢ΔϝϦοτʗσϝϦοτ
    5JQT
    ·ͱΊ

    View Slide

  4. ΞδΣϯμ
    OPUFͷΠϯϑϥߏ੒
    $'Λར༻͢ΔϝϦοτʗσϝϦοτ
    5JQT
    ·ͱΊ

    View Slide

  5. OPUFͷΠϯϑϥߏ੒
    $MPVE'SPOUͰ"OHVMBS /VYUΛ੾Γସ͑

    View Slide

  6. ΞδΣϯμ
    OPUFͷΠϯϑϥߏ੒
    $'Λར༻͢ΔϝϦοτʗσϝϦοτ
    5JQT
    ·ͱΊ

    View Slide

  7. $MPVE'SPOU $'
    ͱ͸
    "84͕ఏڙ͢Δߴ଎ɾߴύϑΥʔϚϯεͳ
    ίϯςϯπ഑৴αʔϏε $%/

    ΞηοτͷΩϟογϡ༻్Ҏ֎ʹ΋࢖͑Δʂ

    View Slide

  8. ύεϕʔεͷϦόʔεϓϩΩγ
    !
    $'Λར༻͢ΔϝϦοτ

    View Slide

  9. Multi Origin
    &MBTUJD#FBOTUBML
    "1*(BUFXBZ
    "-#
    4
    etc…
    $'Λར༻͢ΔϝϦοτ

    View Slide

  10. ύεຖʹΩϟογϡઃఆ͕Մೳ
    ElasticBeanstalk
    path
    /login
    /recommend
    ALB ͳ͠
    ͳ͠
    /aseets/images/* ࣌ؒ
    S3
    origin cache
    $'Λར༻͢ΔϝϦοτ
    Cache Behavior

    View Slide

  11. ҎԼͷϫΠϧυΧʔυͷΈར༻Մೳ
    ΋͘͠͸ͦΕҎ্ͷจࣈྻ
    จࣈ

    ॊೈͳਖ਼نදݱ͸࢖͑ͳ͍ͷͰ63-ઃܭ͸৻ॏʹʂ
    ύεύλʔϯͷ஫ҙ఺
    !
    $'Λར༻͢ΔϝϦοτ

    View Slide

  12. $'Λར༻͢ΔϝϦοτ
    ηΩϡϦςΟରࡦ
    !

    View Slide

  13. 1$*%44ରԠ
    #05ରࡦ
    %%P4؇࿨
    944ରࡦ
    42-Jରࡦ
    https://aws.amazon.com/jp/waf/
    $'Λར༻͢ΔϝϦοτ
    "848"'ʢ΢ΣϒΞϓϦέʔγϣϯϑΝΠΞ΢Υʔϧʣ
    AWS WAF

    View Slide

  14. ແྉͰ࢖͑Δʢ΋Εͳ͘෇͍ͯ͘Δʣ
    %%P4؇࿨
    https://aws.amazon.com/jp/shield/
    $'Λར༻͢ΔϝϦοτ
    "844IJFMEʢϚωʔδυܕͷ%%P4อޢʣ
    AWS Shield Standard

    View Slide

  15. $'Λར༻͢ΔϝϦοτ
    "-#ͷલஈʹஔ͘͜ͱͰϨεϙϯε޲্
    !

    View Slide

  16. $'Λར༻͢ΔϝϦοτ
    Secured API Acceleration with Engineers from Amazon CloudFront and Slack
    https://www.slideshare.net/AmazonWebServices/secured-api-acceleration-with-engineers-from-amazon-cloudfront-and-slack
    4MBDLࣾͷࣄྫ

    View Slide

  17. $'Λར༻͢ΔϝϦοτ
    DSA %ZOBNJD4JUF"DDFMFSBUJPO

    Τοδϩέʔγϣϯ ΦϦδϯ
    ωοτϫʔΫ࠷దԽ
    ϨΠςϯγ͕௿͘ͳΔϨεϙϯε͕଎͘ͳΔ
    ˞ΤοδϩέʔγϣϯΦϦδϯؒͷڑ཭͕͍ۙ৔߹͸ޮՌ͕ബ͍

    View Slide

  18. $'Λར༻͢ΔϝϦοτ
    ৄ͘͠͸ͦͷͬͭ͞Μͷϒϩάʹͯ
    $MPVE'SPOUΛ͔·͢ͱΩϟογϡͳ͠ͷ"1*ίʔϧͰ΋଎͘ͳΔΑ͏ͩ
    http://blog.livedoor.jp/sonots/archives/48002650.html

    View Slide

  19. ίετ
    ·ͣ͸؆қݟੵπʔϧͰ͓ݟੵΓΛʂ
    Πϯλʔωοτ΁ͷσʔλసૹྔ
    )551ϝιουͷϦΫΤετ
    ΦϦδϯ΁ͷσʔλసૹྔ
    https://calculator.s3.amazonaws.com/index.html?lng=ja_JP
    FUDʜ
    $'Λར༻͢ΔσϝϦοτ

    View Slide

  20. $MPVE'SPOU #FIBWJPS

    ϧʔςΟϯάͷࢄࡏԽ
    /VYUKT WVFSPVUFS

    "OHVMBS+4 VJSPVUFS

    3VCZPO3BJMT SPVUFSSC

    New
    $'Λར༻͢ΔσϝϦοτ

    View Slide

  21. ΞδΣϯμ
    OPUFͷΠϯϑϥߏ੒
    $'Λར༻͢ΔϝϦοτʗσϝϦοτ
    5JQT
    ·ͱΊ

    View Slide

  22. 5JQT
    ΫϥΠΞϯτ*1ͷऔಘ
    !

    View Slide

  23. 3BJMTͰ*1Λऔಘ͢Δϝιου
    5JQT
    ActionDispatch::Request
    .remote_ip
    ActionDispatch::Request
    .ip
    53645&%*1
    ΞυϨεͷ֦ுੑ
    )551@$-*&/5@*1
    ΛՃຯ
    ☓ ̋
    ̋

    "DUJPO%JTQBUDI3FRVFTUJQ
    ͸ Λར༻

    View Slide

  24. 5JQT
    ͷར༻έʔε
    3BDLNJEESFXBSF
    (SBQF
    "QQMJDBUJPO$POUSPMMFS
    SFRVFTUJQͷ࣮ମ͸3BDL3FVRFTUJQ
    "DUJPO%JTQBUDI3FRVFTUJQΛར༻͢Δ͜ͱͰ౷Ұ
    3BDL3FVRFTU

    (SBQF3FRVFTU

    "DUJPO%JTQBUDI3FRVFTU

    3BDLNJEESFXBSF

    View Slide

  25. $MPVE'SPOUͷ*1͕औΕΔ
    $'ͷ*1֎෦*1ͱͯ͠൑அ
    5JQT
    ݪҼ
    ൃੜͨ͠໰୊

    View Slide

  26. 5JQT
    3BDL3FVRFTUʹϞϯΩʔύον
    $'ͷ*1ϨϯδΛ53645&%*1ΞυϨεʹ௥Ճ
    ରॲ

    View Slide

  27. ΛΦʔόʔϥΠυ
    ͠ɺˢͰੜ੒ͨ͠
    53645&%ͳ*1܈
    Λར༻
    trusted_proxy?
    $MBTTϩʔυ࣌ʹ
    $'ͷ*1ϨϯδΛ
    ੜ੒͢Δ
    ˢͰੜ੒ͨ͠$'ͷ
    *1ϨϯδΛؚΊɺ
    MPDBMܥ΍JOUBSOBM
    ܥͷ*1Λ߹Θͤͯ
    ఆٛ
    5JQT

    View Slide

  28. 3BDL3FRVFTUJQ
    $MPVE'SPOUͷ*1ΞυϨεൣғ
    3BDL3FRVFTUJQ
    $MPVE'SPOUͷ*1ΞυϨεൣғ
    ࢀߟࢿྉ
    https://github.com/rack/rack/blob/master/lib/rack/
    request.rb#L267-L277
    https://docs.aws.amazon.com/ja_jp/AmazonCloudFront/latest/
    DeveloperGuide/LocationsOfEdgeServers.html
    5JQT

    View Slide

  29. 5JQT
    ϝϯςφϯεϖʔδͷදࣔ
    !

    View Slide

  30. Ϟνϕʔγϣϯ
    ιʔϦʔαʔόʔͷ༻ҙ΋໘౗
    /HJOYͷDPOpHมߋ͸໘౗
    -BNCEB!&EHFͰ୅ସ
    5JQT

    View Slide

  31. -BNCEB!&EHFͱ͸
    ᶃViewer Request ᶄ0SJHJO Request
    ᶅ0SJHJO Response
    ᶆ7JFXFS Response
    Ϣʔβʔ $' ΦϦδϯ
    $MPVE'SPOU্ͰҎԼͷ͍ͣΕ͔ͷΠϕϯτΛ
    ϑοΫͯ͠-BNCEBΛ࣮ߦ͢ΔαʔϏε
    5JQT

    View Slide

  32. ΞΫηεڐՄ*1΍ϝϯςφ
    ϯε։࢝࣌ؒͳͲಈతʹม
    ߋ͍ͨ͠஋͸4ʹKTPOͱ
    ͯ͠഑ஔ͠ಡΈࠐΈ
    εςʔλεͰɺ
    ೚ҙͷ)5.-#PEZΛฦ͢
    ʢ7JFXFS3FRVFTUʹઃఆʣ
    5JQT

    View Slide

  33. -BNCEBಉ༷ʹεϩοτϦϯά͕ൃੜ
    5JQT
    ؀ڥม਺ͷར༻ෆՄ
    ಈ࡞ͨ͠ΤοδϩέʔγϣϯʹΑͬͯϩά
    ग़ྗ͞ΕΔϦʔδϣϯ͕ܾ·Δ
    όʔδχΞϦʔδϣϯʹ഑ஔ
    -BNCEB!&EHFͷ஫ҙ఺

    View Slide

  34. ࢀߟࢿྉ
    5JQT
    "84-BNCEB!&EHFͷϩά͸Ͳ͜ʁ
    $MPVE'SPOU-BNCEB!&EHFͰͷ"84
    -BNCEBͷ࢖༻
    https://dev.classmethod.jp/cloud/aws/where-is-the-lambda-
    edge-log/
    https://docs.aws.amazon.com/ja_jp/lambda/latest/dg/lambda-edge.html

    View Slide

  35. ΞδΣϯμ
    OPUFͷΠϯϑϥߏ੒
    $'Λར༻͢ΔϝϦοτʗσϝϦοτ
    5JQT
    ·ͱΊ

    View Slide

  36. ·ͱΊ
    ΫϥΠΞϯτ*1ΛऔΓ͍ͨͱ͖͸ཁ஫ҙ
    $'ʹݶΒͣϓϩΩγΛհͯ͠ଟஈʹͳΔ৔߹
    -BNCEB!&EHFศར
    ίετ໰୊͕ΫϦΞͰ͖ΔͳΒಋೖ͢΂͖
    ੒໿͕ଟ͍ͷͰτϨʔυΦϑΛԡ͑Δ

    View Slide

  37. ͋Γ͕ͱ͏͍͟͝·ͨ͠

    View Slide