PROJECT OVERVIEW

• This project demonstrates how to design, secure, and automate the deployment of a static website on AWS using production-style cloud practices. The focus is on secure access control, CI/CD automation, and real-world debugging rather than simply hosting a website.
• The website is delivered securely using CloudFront with a private S3 origin, automated deployments using GitHub Actions, and a serverless backend powered by AWS Lambda and DynamoDB to maintain a dynamic view counter.
• This project complements infrastructure-heavy and detection-focused projects by showcasing secure delivery, automation, and application-level troubleshooting.

CORE FEATURES

• Secure static website delivery using Amazon CloudFront and private S3
• Automated CI/CD pipeline using GitHub Actions
• Serverless view counter using AWS Lambda and DynamoDB
• HTTPS enforcement and least-privilege IAM
• Real-world debugging of IAM, CORS, and data serialization issues

ARCHITECTURE OVERVIEW

The architecture follows a secure and minimal design:

• Users access the website over HTTPS through CloudFront
• CloudFront serves static files from a private S3 bucket using Origin Access Control (OAC)
• JavaScript on the website calls a Lambda Function URL to update the view counter
• Lambda reads and increments the view count stored in DynamoDB
• All deployments are automated via GitHub Actions on every push to the main branch

High-level request flow:

User → CloudFront → S3 (static content)
User → CloudFront → Lambda → DynamoDB (view counter)

“High-level AWS architecture showing secure static content delivery via CloudFront and S3, with a serverless Lambda–DynamoDB backend for the view counter.”