Upgrade to Pro — share decks privately, control downloads, hide ads and more …

CloudFront use cases - noteの事例 -

107ba69ff7888cacdb4307a28adf5527?s=47 Retu Fukui
June 12, 2019
Technology
0
6.6k

CloudFront use cases - noteの事例 -

2019/06/12 note engineer meetup #3 (https://pieceofcake.connpass.com/event/128607/) でお話しました

107ba69ff7888cacdb4307a28adf5527?s=128

Retu Fukui

June 12, 2019
Tweet

More Decks by Retu Fukui

See All by Retu Fukui
107ba69ff7888cacdb4307a28adf5527?s=48 fukuiretu
0
750
107ba69ff7888cacdb4307a28adf5527?s=48 fukuiretu
1
1.8k
107ba69ff7888cacdb4307a28adf5527?s=48 fukuiretu
5
3.6k
107ba69ff7888cacdb4307a28adf5527?s=48 fukuiretu
1
360
107ba69ff7888cacdb4307a28adf5527?s=48 fukuiretu
18
44k
107ba69ff7888cacdb4307a28adf5527?s=48 fukuiretu
6
6.8k
107ba69ff7888cacdb4307a28adf5527?s=48 fukuiretu
3
5.9k
107ba69ff7888cacdb4307a28adf5527?s=48 fukuiretu
0
230
107ba69ff7888cacdb4307a28adf5527?s=48 fukuiretu
0
1.2k

Other Decks in Technology

See All in Technology
Cd931bc05e7cee46b9a950a63e47ba4c?s=48 you
0
110
03d565e037c55da5d503eb5a21dba86b?s=48 honai
9
5.7k
0d9e60b12d0a40841b1a746b112ad36b?s=48 aamine
4
830
53817d765d91855d2fabcaef60f8bba0?s=48 chipstar_light
0
470
4ab9c4c8dec50dc08b89981e23e111f2?s=48 katsumataryo
3
810
7f68f5f85f4a39df7d8d3c81cbbfb788?s=48 p1ass
15
5.5k
563d2e1e4cabf5ca21404f7104c90e91?s=48 prog893
0
120
B2fefbb30aba7c25bbe0c8819791631a?s=48 gunnargrosch
0
200
Fe475df4e28cef1175a787fb032e0489?s=48 bolonio
4
560
5c3556b7c8c0ab6bc90a62161a8315f8?s=48 gracia
0
890
842515eaf8fbb2dfcc75197e7797dc15?s=48 sat
1
260
40301c0affdf359eaca771713e22b71a?s=48 harshbothra
0
150

Featured

See All Featured
D83926c323d4f9289f947b4b4e76b939?s=48 jensimmons
208
10k
11c84dff30266b907714802088852677?s=48 jasonvnalue
81
8.1k
Dafc4723e9a1c067796c0fec6f509774?s=48 lemiorhan
628
47k
5f2da528927a2ec9ba4fec2069cbc958?s=48 kneath
220
15k
812e1705ff0f8bc1bcf18587bde687d5?s=48 62gerente
586
200k
9fa239b3154a0169d99ab7bf1422dd12?s=48 marcelosomers
221
15k
C86443373fbfe92996aa882d0d7a59f8?s=48 imathis
479
150k
8081b26e05bb4354f7d65ffc34cbbd67?s=48 chriscoyier
498
130k
1177e050db6bafe62885362edf6e3537?s=48 lauravandoore
10
1.7k
32de0bd2ba869609d26fd052a4622778?s=48 cromwellryan
104
6.3k
4262b9cfacfb6b2c77f23e1d0310cd3e?s=48 myddelton
109
11k
64827b31aef81498662e8af4bd6d5157?s=48 jonrohan
1021
390k

Transcript

  1. ෱Ҫ྽ @fukuiretu 2019.06.12 OPUFFOHJOFFSNFFUVQ $MPVE'SPOU VTFDBTFT OPUFͷࣄྫ

  2. ࣗݾ঺հ Engineer Full Remote Worker piece of cake, inc. ೖࣾ

    ੨৿ݝ߂લࢢࡏॅ 3VCZPO3BJMT /VYUKT "84 @r82 @fukuiretu @fukuiretu ෱Ҫ྽

  3. ΞδΣϯμ OPUFͷΠϯϑϥߏ੒ $'Λར༻͢ΔϝϦοτʗσϝϦοτ 5JQT ·ͱΊ

  4. ΞδΣϯμ OPUFͷΠϯϑϥߏ੒ $'Λར༻͢ΔϝϦοτʗσϝϦοτ 5JQT ·ͱΊ

  5. OPUFͷΠϯϑϥߏ੒ $MPVE'SPOUͰ"OHVMBS /VYUΛ੾Γସ͑

  6. ΞδΣϯμ OPUFͷΠϯϑϥߏ੒ $'Λར༻͢ΔϝϦοτʗσϝϦοτ 5JQT ·ͱΊ

  7. $MPVE'SPOU $' ͱ͸ "84͕ఏڙ͢Δߴ଎ɾߴύϑΥʔϚϯεͳ ίϯςϯπ഑৴αʔϏε $%/ ΞηοτͷΩϟογϡ༻్Ҏ֎ʹ΋࢖͑Δʂ

  8. ύεϕʔεͷϦόʔεϓϩΩγ ! $'Λར༻͢ΔϝϦοτ

  9. Multi Origin &MBTUJD#FBOTUBML "1*(BUFXBZ "-# 4 etc… $'Λར༻͢ΔϝϦοτ

  10. ύεຖʹΩϟογϡઃఆ͕Մೳ ElasticBeanstalk path /login /recommend ALB ͳ͠ ͳ͠ /aseets/images/* ࣌ؒ

    S3 origin cache $'Λར༻͢ΔϝϦοτ Cache Behavior

  11. ҎԼͷϫΠϧυΧʔυͷΈར༻Մೳ ΋͘͠͸ͦΕҎ্ͷจࣈྻ จࣈ ॊೈͳਖ਼نදݱ͸࢖͑ͳ͍ͷͰ63-ઃܭ͸৻ॏʹʂ ύεύλʔϯͷ஫ҙ఺ ! $'Λར༻͢ΔϝϦοτ

  12. $'Λར༻͢ΔϝϦοτ ηΩϡϦςΟରࡦ !

  13. 1$*%44ରԠ #05ରࡦ %%P4؇࿨ 944ରࡦ 42-Jରࡦ https://aws.amazon.com/jp/waf/ $'Λར༻͢ΔϝϦοτ "848"'ʢ΢ΣϒΞϓϦέʔγϣϯϑΝΠΞ΢Υʔϧʣ AWS WAF

  14. ແྉͰ࢖͑Δʢ΋Εͳ͘෇͍ͯ͘Δʣ %%P4؇࿨ https://aws.amazon.com/jp/shield/ $'Λར༻͢ΔϝϦοτ "844IJFMEʢϚωʔδυܕͷ%%P4อޢʣ AWS Shield Standard

  15. $'Λར༻͢ΔϝϦοτ "-#ͷલஈʹஔ͘͜ͱͰϨεϙϯε޲্ !

  16. $'Λར༻͢ΔϝϦοτ Secured API Acceleration with Engineers from Amazon CloudFront and

    Slack https://www.slideshare.net/AmazonWebServices/secured-api-acceleration-with-engineers-from-amazon-cloudfront-and-slack 4MBDLࣾͷࣄྫ

  17. $'Λར༻͢ΔϝϦοτ DSA %ZOBNJD4JUF"DDFMFSBUJPO  Τοδϩέʔγϣϯ ΦϦδϯ ωοτϫʔΫ࠷దԽ ϨΠςϯγ͕௿͘ͳΔϨεϙϯε͕଎͘ͳΔ ˞ΤοδϩέʔγϣϯΦϦδϯؒͷڑ཭͕͍ۙ৔߹͸ޮՌ͕ബ͍

  18. $'Λར༻͢ΔϝϦοτ ৄ͘͠͸ͦͷͬͭ͞Μͷϒϩάʹͯ $MPVE'SPOUΛ͔·͢ͱΩϟογϡͳ͠ͷ"1*ίʔϧͰ΋଎͘ͳΔΑ͏ͩ http://blog.livedoor.jp/sonots/archives/48002650.html

  19. ίετ ·ͣ͸؆қݟੵπʔϧͰ͓ݟੵΓΛʂ Πϯλʔωοτ΁ͷσʔλసૹྔ )551ϝιουͷϦΫΤετ ΦϦδϯ΁ͷσʔλసૹྔ https://calculator.s3.amazonaws.com/index.html?lng=ja_JP FUDʜ $'Λར༻͢ΔσϝϦοτ

  20. $MPVE'SPOU #FIBWJPS ϧʔςΟϯάͷࢄࡏԽ /VYUKT WVFSPVUFS "OHVMBS+4 VJSPVUFS 3VCZPO3BJMT SPVUFSSC New

    $'Λར༻͢ΔσϝϦοτ

  21. ΞδΣϯμ OPUFͷΠϯϑϥߏ੒ $'Λར༻͢ΔϝϦοτʗσϝϦοτ 5JQT ·ͱΊ

  22. 5JQT ΫϥΠΞϯτ*1ͷऔಘ !

  23. 3BJMTͰ*1Λऔಘ͢Δϝιου 5JQT ActionDispatch::Request .remote_ip ActionDispatch::Request .ip 53645&%*1 ΞυϨεͷ֦ுੑ )551@$-*&/5@*1 ΛՃຯ

    ☓ ̋ ̋ ☓ "DUJPO%JTQBUDI3FRVFTUJQ ͸ Λར༻

  24. 5JQT ͷར༻έʔε 3BDLNJEESFXBSF (SBQF "QQMJDBUJPO$POUSPMMFS SFRVFTUJQͷ࣮ମ͸3BDL3FVRFTUJQ "DUJPO%JTQBUDI3FRVFTUJQΛར༻͢Δ͜ͱͰ౷Ұ 3BDL3FVRFTU (SBQF3FRVFTU "DUJPO%JTQBUDI3FRVFTU

    3BDLNJEESFXBSF

  25. $MPVE'SPOUͷ*1͕औΕΔ $'ͷ*1֎෦*1ͱͯ͠൑அ 5JQT ݪҼ ൃੜͨ͠໰୊

  26. 5JQT 3BDL3FVRFTUʹϞϯΩʔύον $'ͷ*1ϨϯδΛ53645&%*1ΞυϨεʹ௥Ճ ରॲ

  27. ΛΦʔόʔϥΠυ ͠ɺˢͰੜ੒ͨ͠ 53645&%ͳ*1܈ Λར༻ trusted_proxy? $MBTTϩʔυ࣌ʹ $'ͷ*1ϨϯδΛ ੜ੒͢Δ ˢͰੜ੒ͨ͠$'ͷ *1ϨϯδΛؚΊɺ

    MPDBMܥ΍JOUBSOBM ܥͷ*1Λ߹Θͤͯ ఆٛ 5JQT

  28. 3BDL3FRVFTUJQ $MPVE'SPOUͷ*1ΞυϨεൣғ 3BDL3FRVFTUJQ $MPVE'SPOUͷ*1ΞυϨεൣғ ࢀߟࢿྉ https://github.com/rack/rack/blob/master/lib/rack/ request.rb#L267-L277 https://docs.aws.amazon.com/ja_jp/AmazonCloudFront/latest/ DeveloperGuide/LocationsOfEdgeServers.html 5JQT

  29. 5JQT ϝϯςφϯεϖʔδͷදࣔ !

  30. Ϟνϕʔγϣϯ ιʔϦʔαʔόʔͷ༻ҙ΋໘౗ /HJOYͷDPOpHมߋ͸໘౗ -BNCEB!&EHFͰ୅ସ 5JQT

  31. -BNCEB!&EHFͱ͸ ᶃViewer Request ᶄ0SJHJO Request ᶅ0SJHJO Response ᶆ7JFXFS Response Ϣʔβʔ

    $' ΦϦδϯ $MPVE'SPOU্ͰҎԼͷ͍ͣΕ͔ͷΠϕϯτΛ ϑοΫͯ͠-BNCEBΛ࣮ߦ͢ΔαʔϏε 5JQT

  32. ΞΫηεڐՄ*1΍ϝϯςφ ϯε։࢝࣌ؒͳͲಈతʹม ߋ͍ͨ͠஋͸4ʹKTPOͱ ͯ͠഑ஔ͠ಡΈࠐΈ εςʔλεͰɺ ೚ҙͷ)5.-#PEZΛฦ͢ ʢ7JFXFS3FRVFTUʹઃఆʣ 5JQT

  33. -BNCEBಉ༷ʹεϩοτϦϯά͕ൃੜ 5JQT ؀ڥม਺ͷར༻ෆՄ ಈ࡞ͨ͠ΤοδϩέʔγϣϯʹΑͬͯϩά ग़ྗ͞ΕΔϦʔδϣϯ͕ܾ·Δ όʔδχΞϦʔδϣϯʹ഑ஔ -BNCEB!&EHFͷ஫ҙ఺

  34. ࢀߟࢿྉ 5JQT "84-BNCEB!&EHFͷϩά͸Ͳ͜ʁ $MPVE'SPOU-BNCEB!&EHFͰͷ"84 -BNCEBͷ࢖༻ https://dev.classmethod.jp/cloud/aws/where-is-the-lambda- edge-log/ https://docs.aws.amazon.com/ja_jp/lambda/latest/dg/lambda-edge.html

  35. ΞδΣϯμ OPUFͷΠϯϑϥߏ੒ $'Λར༻͢ΔϝϦοτʗσϝϦοτ 5JQT ·ͱΊ

  36. ·ͱΊ ΫϥΠΞϯτ*1ΛऔΓ͍ͨͱ͖͸ཁ஫ҙ $'ʹݶΒͣϓϩΩγΛհͯ͠ଟஈʹͳΔ৔߹ -BNCEB!&EHFศར ίετ໰୊͕ΫϦΞͰ͖ΔͳΒಋೖ͢΂͖ ੒໿͕ଟ͍ͷͰτϨʔυΦϑΛԡ͑Δ

  37. ͋Γ͕ͱ͏͍͟͝·ͨ͠