SecurityPolicyProtocol

class aws_cdk.aws_cloudfront.SecurityPolicyProtocol(value, names=None, *, module=None, qualname=None, type=None, start=1, boundary=None)

Bases: Enum

The minimum version of the SSL protocol that you want CloudFront to use for HTTPS connections.

CloudFront serves your objects only to browsers or devices that support at least the SSL version that you specify.

ExampleMetadata:

lit=aws-cloudfront/test/example.iam-cert-alias.lit.ts infused

Example:

s3_bucket_source = s3.Bucket(self, "Bucket")

distribution = cloudfront.CloudFrontWebDistribution(self, "AnAmazingWebsiteProbably",
    origin_configs=[cloudfront.aws_cloudfront.SourceConfiguration(
        s3_origin_source=cloudfront.aws_cloudfront.S3OriginConfig(s3_bucket_source=s3_bucket_source),
        behaviors=[cloudfront.aws_cloudfront.Behavior(is_default_behavior=True)]
    )],
    viewer_certificate=cloudfront.ViewerCertificate.from_iam_certificate("certificateId",
        aliases=["example.com"],
        security_policy=cloudfront.SecurityPolicyProtocol.SSL_V3,  # default
        ssl_method=cloudfront.SSLMethod.SNI
    )
)

Attributes

SSL_V3 = 'SSL_V3'
TLS_V1 = 'TLS_V1'
TLS_V1_1_2016 = 'TLS_V1_1_2016'
TLS_V1_2016 = 'TLS_V1_2016'
TLS_V1_2_2018 = 'TLS_V1_2_2018'
TLS_V1_2_2019 = 'TLS_V1_2_2019'
TLS_V1_2_2021 = 'TLS_V1_2_2021'