CloudFront Functions event structure
CloudFront Functions passes an event
object to your function code as input when it
runs the function. When you test a function, you create
the event
object and pass it to your function. When you create an
event
object for testing a function, you can omit the
distributionDomainName
, distributionId
, and
requestId
fields in the context
object. Make sure that the
names of headers are lowercase, which is always the case in the event
object
that CloudFront Functions passes to your function in production.
The following shows an overview of the structure of this event object.
{ "version": "1.0", "context": { <context object> }, "viewer": { <viewer object> }, "request": { <request object> }, "response": { <response object> } }
For more information, see the following topics:
Topics
Version field
The version
field contains a string that specifies the version of the
CloudFront Functions event object. The current version is 1.0
.
Context object
The context
object contains contextual information about the event. It
includes the following fields:
distributionDomainName
-
The CloudFront domain name (for example, d111111abcdef8.cloudfront.net) of the distribution that's associated with the event.
distributionId
-
The ID of the distribution (for example, EDFDVBD6EXAMPLE) that's associated with the event.
eventType
-
The event type, either
viewer-request
orviewer-response
. requestId
-
A string that uniquely identifies a CloudFront request (and its associated response).
Viewer object
The viewer
object contains an ip
field whose value is the IP
address of the viewer (client) that sent the request. If the viewer request came through
an HTTP proxy or a load balancer, the value is the IP address of the proxy or load
balancer.
Request object
The request
object contains a representation of a viewer-to-CloudFront HTTP
request. In the event
object that's passed to your function, the
request
object represents the actual request that CloudFront received from
the viewer.
If your function code returns a request
object to CloudFront, it must use this
same structure.
The request
object contains the following fields:
method
-
The HTTP method of the request. If your function code returns a
request
, it can't modify this field. This is the only read-only field in therequest
object. uri
-
The relative path of the requested object.
Note
If your function modifies the
uri
value, the following applies:-
The new
uri
value must begin with a forward slash (/
). -
When a function changes the
uri
value, it changes the object that the viewer is requesting. -
When a function changes the
uri
value, it doesn't change the cache behavior for the request or the origin that an origin request is sent to.
-
querystring
-
An object that represents the query string in the request. If the request doesn't include a query string, the
request
object still includes an emptyquerystring
object.The
querystring
object contains one field for each query string parameter in the request. headers
-
An object that represents the HTTP headers in the request. If the request contains any
Cookie
headers, those headers are not part of theheaders
object. Cookies are represented separately in thecookies
object.The
headers
object contains one field for each header in the request. Header names are converted to lowercase in the event object, and header names must be lowercase when they're added by your function code. When CloudFront Functions converts the event object back into an HTTP request, the first letter of each word in header names is capitalized. Words are separated by a hyphen (-
). For example, if your function code adds a header namedexample-header-name
, CloudFront converts this toExample-Header-Name
in the HTTP request. cookies
-
An object that represents the cookies in the request (
Cookie
headers).The
cookies
object contains one field for each cookie in the request.
For more information about the structure of query strings, headers, and cookies, see Structure for a query string, header, or cookie.
For an example event
object, see Example event object.
Response object
The response
object contains a representation of a CloudFront-to-viewer HTTP
response. In the event
object that's passed to your function, the
response
object represents CloudFront's actual response to a viewer
request.
If your function code returns a response
object, it must use this same
structure.
The response
object contains the following fields:
statusCode
-
The HTTP status code of the response. This value is an integer, not a string.
Your function can generate or modify the
statusCode
. statusDescription
-
The HTTP status description of the response. If your function code generates a response, this field is optional.
headers
-
An object that represents the HTTP headers in the response. If the response contains any
Set-Cookie
headers, those headers are not part of theheaders
object. Cookies are represented separately in thecookies
object.The
headers
object contains one field for each header in the response. Header names are converted to lowercase in the event object, and header names must be lowercase when they're added by your function code. When CloudFront Functions converts the event object back into an HTTP response, the first letter of each word in header names is capitalized. Words are separated by a hyphen (-
). For example, if your function code adds a header namedexample-header-name
, CloudFront converts this toExample-Header-Name
in the HTTP response. cookies
-
An object that represents the cookies in the response (
Set-Cookie
headers).The
cookies
object contains one field for each cookie in the response. body
-
Adding the
body
field is optional, and it will not be present in theresponse
object unless you specify it in your function. Your function does not have access to the original body returned by the CloudFront cache or origin. If you don't specify thebody
field in your viewer response function, the original body returned by the CloudFront cache or origin is returned to viewer.If you want CloudFront to return a custom body to the viewer, specify the body content in the
data
field, and the body encoding in theencoding
field. You can specify the encoding as plain text ("encoding": "text"
) or as Base64-encoded content ("encoding": "base64"
).As a shortcut, you can also specify the body content directly in the
body
field ("body": "<specify the body content here>"
). When you do this, omit thedata
andencoding
fields. CloudFront treats the body as plain text in this case.encoding
-
The encoding for the
body
content (data
field). The only valid encodings aretext
andbase64
.If you specify
encoding
asbase64
but the body is not valid base64, CloudFront returns an error. data
-
The
body
content.
For more information about modified status codes and body content, see Status code and body.
For more information about the structure of headers and cookies, see Structure for a query string, header, or cookie.
For an example response
object, see Example response object.
Status code and body
With CloudFront Functions, you can update the viewer response status code, replace the entire response body with a new one, or remove the response body. Some common scenarios for updating the viewer response after evaluating aspects of the response from the CloudFront cache or origin include the following:
-
Changing the status to set an HTTP 200 status code and creating static body content to return to the viewer.
-
Changing the status to set an HTTP 301 or 302 status code to redirect the user to another website.
-
Deciding whether to serve or drop the body of the viewer response.
Note
If the origin returns an HTTP error of 400 and above, the CloudFront Function will not run. For more information see Restrictions on all edge functions.
When you're working with the HTTP response, CloudFront Functions does not have access to the response body. You can replace the body content by setting it to the desired value, or you can remove the body by setting the value to be empty. If you don't update the body field in your function, the original body returned by the CloudFront cache or origin is returned back to viewer.
Tip
When using CloudFront Functions to replace a body, be sure to align the corresponding
headers, such as content-encoding
, content-type
, or
content-length
, to the new body content.
For example, if the CloudFront origin or cache returns content-encoding:
gzip
but the viewer response function sets a body that's plain text, the
function also needs to change the content-encoding
and
content-type
headers accordingly.
If your CloudFront Function is configured to return an HTTP error of 400 or above, your viewer will not see a custom error page that you have specified for the same status code.
Structure for a query string, header, or cookie
Query strings, headers, and cookies share the same structure. Query strings can appear in requests. Headers appear in requests and responses. Cookies appear in requests and responses.
Each query string, header, or cookie is a unique field within the parent
querystring
, headers
, or cookies
object. The
field name is the name of the query string, header, or cookie. Each field contains a
value
property with the value of the query string, header, or
cookie.
Contents
Query strings values or query string objects
A function can return a query string value in addition to a query string object. The query string value can be used to arrange the query string parameters in any custom order.
Example
To modify a query string in your function code, use code like the following.
var request = event.request; request.querystring = 'ID=42&Exp=1619740800&TTL=1440&NoValue=&querymv=val1&querymv=val2,val3';
Special considerations for headers
For headers only, the header names are converted to lowercase in the event object,
and header names must be lowercase when they're added by your function code. When
CloudFront Functions converts the event object back into an HTTP request or response, the
first letter of each word in header names is capitalized. Words are separated by a
hyphen (-
). For example, if your function code adds a header named
example-header-name
, CloudFront converts this to
Example-Header-Name
in the HTTP request or response.
Example
Consider the following Host
header in an HTTP request.
Host: video.example.com
This header is represented as follows in the request
object:
"headers": { "host": { "value": "video.example.com" } }
To access the Host
header in your function code, use code like
the following:
var request = event.request; var host = request.headers.host.value;
To add or modify a header in your function code, use code like the following
(this code adds a header named X-Custom-Header
with the value
example value
):
var request = event.request; request.headers['x-custom-header'] = {value: 'example value'};
Duplicate query strings,
headers, and cookies (multiValue
array)
An HTTP request or response can contain more than one query string, header, or
cookie with the same name. In this case, the duplicate query strings, headers, or
cookies are collapsed into one field in the request
or
response
object, but this field contains an extra property named
multiValue
. The multiValue
property contains an array
with the values of each of the duplicate query strings, headers, or cookies.
Example
Consider an HTTP request with the following Accept
headers.
Accept: application/json Accept: application/xml Accept: text/html
These headers are represented as follows in the request
object.
"headers": { "accept": { "value": "application/json", "multiValue": [ { "value": "application/json" }, { "value": "application/xml" }, { "value": "text/html" } ] } }
Note
The first header value (in this case, application/json
) is
repeated in both the value
and multiValue
properties.
This allows you to access all the values by
looping through the multiValue
array.
If your function code modifies a query string, header, or cookie that has a
multiValue
array, CloudFront Functions uses the following rules to apply
the changes:
-
If the
multiValue
array exists and has any modification, then that modification is applied. The first element in thevalue
property is ignored. -
Otherwise, any modification to the
value
property is applied, and subsequent values (if they exist) remain unchanged.
The multiValue
property is used only when the HTTP request or
response contains duplicate query strings, headers, or cookies with the same name,
as shown in the preceding example. However, if there are multiple values in a single
query string, header, or cookie, the multiValue
property is not
used.
Example
Consider a request with one Accept
header that contains three
values.
Accept: application/json, application/xml, text/html
This header is represented as follows in the request
object.
"headers": { "accept": { "value": "application/json, application/xml, text/html" } }
Cookie attributes
In a Set-Cookie
header in an HTTP response, the header contains the
name–value pair for the cookie and optionally a set of attributes separated by
semicolons.
Example
Set-Cookie: cookie1=val1; Secure; Path=/; Domain=example.com; Expires=Wed, 05 Apr 2021 07:28:00 GMT
In the response
object, these attributes are represented in the
attributes
property of the cookie field. For example, the
preceding Set-Cookie
header is represented as follows:
"cookie1": { "value": "val1", "attributes": "Secure; Path=/; Domain=example.com; Expires=Wed, 05 Apr 2021 07:28:00 GMT" }
Example response object
The following example shows a response
object — the output of a
viewer response function — in which the body has been replaced by a viewer
response function.
{ "response": { "statusCode": 200, "statusDescription": "OK", "headers": { "date": { "value": "Mon, 04 Apr 2021 18:57:56 GMT" }, "server": { "value": "gunicorn/19.9.0" }, "access-control-allow-origin": { "value": "*" }, "access-control-allow-credentials": { "value": "true" }, "content-type": { "value": "text/html" }, "content-length": { "value": "86" } }, "cookies": { "ID": { "value": "id1234", "attributes": "Expires=Wed, 05 Apr 2021 07:28:00 GMT" }, "Cookie1": { "value": "val1", "attributes": "Secure; Path=/; Domain=example.com; Expires=Wed, 05 Apr 2021 07:28:00 GMT", "multiValue": [ { "value": "val1", "attributes": "Secure; Path=/; Domain=example.com; Expires=Wed, 05 Apr 2021 07:28:00 GMT" }, { "value": "val2", "attributes": "Path=/cat; Domain=example.com; Expires=Wed, 10 Jan 2021 07:28:00 GMT" } ] } }, // Adding the body field is optional and it will not be present in the response object // unless you specify it in your function. // Your function does not have access to the original body returned by the CloudFront // cache or origin. // If you don't specify the body field in your viewer response function, the original // body returned by the CloudFront cache or origin is returned to viewer. "body": { "encoding": "text", "data": "<!DOCTYPE html><html><body><p>Here is your custom content.</p></body></html>" } } }
Example event object
The following example shows a complete event
object.
Note
The event
object is the input to your function. Your function returns
only the request
or response
object, not the complete
event
object.
{ "version": "1.0", "context": { "distributionDomainName": "d111111abcdef8.cloudfront.net", "distributionId": "EDFDVBD6EXAMPLE", "eventType": "viewer-response", "requestId": "EXAMPLEntjQpEXAMPLE_SG5Z-EXAMPLEPmPfEXAMPLEu3EqEXAMPLE==" }, "viewer": {"ip": "198.51.100.11"}, "request": { "method": "GET", "uri": "/media/index.mpd", "querystring": { "ID": {"value": "42"}, "Exp": {"value": "1619740800"}, "TTL": {"value": "1440"}, "NoValue": {"value": ""}, "querymv": { "value": "val1", "multiValue": [ {"value": "val1"}, {"value": "val2,val3"} ] } }, "headers": { "host": {"value": "video.example.com"}, "user-agent": {"value": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:83.0) Gecko/20100101 Firefox/83.0"}, "accept": { "value": "application/json", "multiValue": [ {"value": "application/json"}, {"value": "application/xml"}, {"value": "text/html"} ] }, "accept-language": {"value": "en-GB,en;q=0.5"}, "accept-encoding": {"value": "gzip, deflate, br"}, "origin": {"value": "https://website.example.com"}, "referer": {"value": "https://website.example.com/videos/12345678?action=play"}, "cloudfront-viewer-country": {"value": "GB"} }, "cookies": { "Cookie1": {"value": "value1"}, "Cookie2": {"value": "value2"}, "cookie_consent": {"value": "true"}, "cookiemv": { "value": "value3", "multiValue": [ {"value": "value3"}, {"value": "value4"} ] } } }, "response": { "statusCode": 200, "statusDescription": "OK", "headers": { "date": {"value": "Mon, 04 Apr 2021 18:57:56 GMT"}, "server": {"value": "gunicorn/19.9.0"}, "access-control-allow-origin": {"value": "*"}, "access-control-allow-credentials": {"value": "true"}, "content-type": {"value": "application/json"}, "content-length": {"value": "701"} }, "cookies": { "ID": { "value": "id1234", "attributes": "Expires=Wed, 05 Apr 2021 07:28:00 GMT" }, "Cookie1": { "value": "val1", "attributes": "Secure; Path=/; Domain=example.com; Expires=Wed, 05 Apr 2021 07:28:00 GMT", "multiValue": [ { "value": "val1", "attributes": "Secure; Path=/; Domain=example.com; Expires=Wed, 05 Apr 2021 07:28:00 GMT" }, { "value": "val2", "attributes": "Path=/cat; Domain=example.com; Expires=Wed, 10 Jan 2021 07:28:00 GMT" } ] } } } }