DeveloperHat
How to Host a Static Website on AWS S3 (Step-by-Step Guide)
AWS

How to Host a Static Website on AWS S3 (Step-by-Step Guide)

Learn how to host your static website on Amazon S3, configure permissions, and set up custom domains with CloudFront.

March 20, 2024
Tech Writer
6 min read

How to Host a Static Website on AWS S3

S3 Static Website Architecture

graph LR Users((Users)) --> CF[CloudFront] CF --> S3[S3 Bucket] S3 --> Index[index.html] S3 --> Error[error.html] S3 --> Assets[Static Assets] subgraph Security WAF[AWS WAF] --> CF ACM[ACM Certificate] --> CF end subgraph DNS Route53[Route 53] --> CF end

What You'll Learn

  • Setting up an S3 bucket for static website hosting
  • Configuring bucket permissions and policies
  • Enabling HTTPS with CloudFront
  • Setting up custom domains with Route 53
  • Implementing security best practices
  • Optimizing performance and costs
  • Troubleshooting common issues

Prerequisites

Required Tools and Services

RequirementPurposeNotes
AWS AccountService accessFree tier eligible
AWS CLICommand-line managementVersion 2.x recommended
Domain NameCustom URL (optional)Can use Route 53 or external registrar

Website Files Preparation

File TypeRequiredBest Practice
HTML filesYesMinified for production
CSS/JavaScriptOptionalBundled and minified
ImagesOptionalOptimized and compressed

Step 1: Create and Configure S3 Bucket

Using AWS CLI

# Create S3 bucket
aws s3api create-bucket \
    --bucket your-website-bucket \
    --region us-east-1

# Enable website hosting
aws s3api put-bucket-website \
    --bucket your-website-bucket \
    --website-configuration file://website-config.json

Website Configuration (website-config.json)

{
    "IndexDocument": {
        "Suffix": "index.html"
    },
    "ErrorDocument": {
        "Key": "error.html"
    }
}

Bucket Policy Configuration

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "PublicReadGetObject",
            "Effect": "Allow",
            "Principal": "*",
            "Action": [
                "s3:GetObject"
            ],
            "Resource": "arn:aws:s3:::your-website-bucket/*"
        }
    ]
}

CORS Configuration (if needed)

{
    "CORSRules": [
        {
            "AllowedOrigins": ["*"],
            "AllowedMethods": ["GET"],
            "MaxAgeSeconds": 3000,
            "AllowedHeaders": ["Authorization", "Content-Length"]
        }
    ]
}

Step 2: Upload Website Content

File Organization

your-website/
├── index.html
├── error.html
├── assets/
│   ├── css/
│   │   └── styles.css
│   ├── js/
│   │   └── main.js
│   └── images/
│       └── logo.png
├── blog/
│   └── index.html
└── about/
    └── index.html

Upload Commands

# Upload all files with proper content types
aws s3 sync . s3://your-website-bucket \
    --exclude "*.DS_Store" \
    --exclude "node_modules/*" \
    --include "*.html" \
    --include "*.css" \
    --include "*.js" \
    --include "*.jpg" \
    --include "*.png" \
    --cache-control "max-age=86400"

Content Type Mapping

File TypeContent-TypeCache Control
.htmltext/htmlno-cache
.csstext/cssmax-age=604800
.jsapplication/javascriptmax-age=604800
imagesimage/[type]max-age=31536000

Step 3: CloudFront Configuration

Distribution Settings

SettingValueExplanation
Origin Domainbucket-name.s3-website-region.amazonaws.comS3 website endpoint
Origin Path/Root path
Viewer Protocol PolicyRedirect HTTP to HTTPSForce HTTPS
Allowed HTTP MethodsGET, HEADStatic content only
Cache PolicyCachingOptimizedBest for static sites
Price ClassUse All Edge LocationsGlobal distribution

Function Associations

Function TypePurposeExample
Viewer RequestURL rewritingAdd index.html
Origin RequestHeader modificationAdd security headers
Origin ResponseResponse modificationAdd CORS headers

Step 4: Custom Domain Configuration

ACM Certificate Request

# Request certificate
aws acm request-certificate \
    --domain-name example.com \
    --validation-method DNS \
    --subject-alternative-names www.example.com

Route 53 Configuration

Record TypeNameValueTTL
A (Alias)example.comCloudFront distributionAutomatic
CNAMEwwwCloudFront domain300 seconds
AAAA (Alias)example.comCloudFront distributionAutomatic

Advanced Configuration

Security Headers

{
    "Strict-Transport-Security": "max-age=31536000; includeSubdomains; preload",
    "Content-Security-Policy": "default-src 'self'",
    "X-Content-Type-Options": "nosniff",
    "X-Frame-Options": "DENY",
    "X-XSS-Protection": "1; mode=block",
    "Referrer-Policy": "strict-origin-when-cross-origin"
}

Error Page Configuration

{
    "ErrorDocument": {
        "Key": "error.html"
    },
    "RoutingRules": [
        {
            "Condition": {
                "HttpErrorCodeReturnedEquals": "404"
            },
            "Redirect": {
                "HostName": "example.com",
                "ReplaceKeyWith": "404.html"
            }
        }
    ]
}

Performance Optimization

CloudFront Cache Behaviors

Path PatternTTL SettingsCompression
/*.html0 secondsYes
/assets/images/*1 yearNo
/assets/css/*1 weekYes
/assets/js/*1 weekYes

Image Optimization

FormatUse CaseOptimization Tool
WebPModern browserscwebp
JPEGPhotosjpegoptim
PNGIcons/logospngquant

Monitoring and Analytics

CloudWatch Metrics

MetricDescriptionThreshold
RequestsTotal requestsMonitor trends
BytesDownloadedData transferCost control
4xxErrorRateClient errorsLess than 1%
5xxErrorRateServer errorsLess than 0.1%

Cost Management

Cost Optimization Strategies

  1. Storage Optimization

    • Enable lifecycle policies
    • Remove unused files
    • Use appropriate storage class

  2. CloudFront Optimization

    • Choose appropriate price class
    • Optimize cache hit ratio
    • Monitor data transfer

  3. Request Optimization

    • Bundle and minify assets
    • Use appropriate cache settings
    • Implement lazy loading

Monthly Cost Estimation

ComponentUsageEstimated Cost
S3 Storage1 GB$0.023
Data Transfer100 GB$8.50
Requests1M$0.40

Maintenance and Updates

Regular Tasks

  1. Weekly

    • Monitor error rates
    • Check access logs
    • Review security findings

  2. Monthly

    • Update content
    • Review metrics
    • Cost analysis

  3. Quarterly

    • Security assessment
    • Performance optimization
    • Infrastructure review

Troubleshooting Guide

Common Issues and Solutions

IssuePossible CauseSolution
403 ForbiddenBucket policyVerify permissions
HTTPS not workingSSL certificateCheck ACM setup
Slow loadingCache settingsOptimize CloudFront
404 errorsMissing filesCheck file paths

Conclusion

Hosting a static website on AWS S3 with CloudFront provides a scalable, secure, and cost-effective solution. By following this comprehensive guide and implementing the best practices, you can create a high-performance website with global reach.

Additional Resources

  1. AWS S3 Documentation
  2. CloudFront Developer Guide
  3. AWS Pricing Calculator
  4. AWS Well-Architected Framework
  5. Static Website Security Guide
AWS
S3
Static Website
CloudFront
Hosting

Related Posts

Getting Started with Amazon S3: A Practical Guide

Getting Started with Amazon S3: A Practical Guide

1/24/2024

How to Leverage Edge Computing with AWS CloudFront and Lambda@Edge

How to Leverage Edge Computing with AWS CloudFront and Lambda@Edge

2/20/2024

Optimizing AWS CloudFront for High-Performance Content Delivery

Optimizing AWS CloudFront for High-Performance Content Delivery

3/19/2024

Building AI Applications with AWS Serverless Services

Building AI Applications with AWS Serverless Services

3/11/2024

AWS Lambda: The Complete Guide to Serverless Functions

AWS Lambda: The Complete Guide to Serverless Functions

1/25/2024

How to Use AWS Security Hub for Centralized Threat Management

How to Use AWS Security Hub for Centralized Threat Management

2/8/2024

Top 10 AWS Security Best Practices Every Developer Should Know

Top 10 AWS Security Best Practices Every Developer Should Know

2/1/2024

CI/CD Pipelines 101: Automating Code Delivery with Jenkins and AWS CodePipeline

CI/CD Pipelines 101: Automating Code Delivery with Jenkins and AWS CodePipeline

1/25/2024

Infrastructure as Code: Best Practices with Terraform and CloudFormation

Infrastructure as Code: Best Practices with Terraform and CloudFormation

1/21/2024

Managing Multi-Cloud Environments with Terraform

Managing Multi-Cloud Environments with Terraform

1/15/2024