oram.co's People
oram.co's Issues
Add HSTS header for an A+ on SSLLabs
Describe the bug
Currently SSL Labs gives our site a grade of "A". But A+ is possible.
To Reproduce
Steps to reproduce the behavior:
- Go to SSL Labs
- See grade
Expected behavior
A grade of A+ is preferred.
Additional context
The problem is with Strict Transport Security (HSTS), and can be fixed with an appropriate HTTP header
Improve SecurityHeaders.com grade from D to A/A+
Describe the bug
We are missing some http headers that can only be set with Lambda Edge for CloudFront
To Reproduce
Steps to reproduce the behavior:
- Go to securityheaders.com
- See grade
Expected behavior
We should have an A or even A+ grade
Additional context
AWS Reference
Test Publish
Fix issue with dev/prod detection in terraform script
Hosting infrastructure
Now that we have the start of a new site, we should get it deployed. The rough plan is for.
S3 to host the static content (we will host using a primary and secondary bucket from different regions)
CloudFront to act as a CDN between the client and the buckets
Certificate Manager to generate TLS certs, approved automatically by DNS
The route53 zone is already in place for oram.co, so we should add the appropriate DNS records too. IPv4 and IPv6.
Success criteria:
- Infrastructure is managed by Terraform, and Terraform deploys are triggered by our CodePipeline after a successful build.
- The static site is deployed to S3 using CodeBuild triggered by CodePipeline.
- The static website is available on the Internet via https://oram.co
I expect there will still be issues reported by SSLLabs, Lighthouse and SecurityHeaders.com, among others. Those can be dealt with in subsequent releases.
Move to new Terraform org - benoram
Is your feature request related to a problem? Please describe.
This project should be in a different terraform org instead of cluttering up the existing one
Describe the solution you'd like
Move to workspaces in the 'benoram' organization
Keybase: Link directly to chat
Keybase now supports the ability to open a chat in their app directly from a web link. So change from
to
CICD Phase 1
Our project needs a CICD solution to automate software builds, tests and deployments.
The scope of this first phase is to
- Create a CodePipeline using Terraform that can retrieve source from GitHub
- Stub out Website Build
- Stub out Infrastructure Deploy with Terraform
- Stub out Website Deploy
The infrastructure created in Phase 1 will be used to orchestrate the majority of software and infrastructure deployments.
Infrastructure state will be hosted with Terraform Cloud.
SSM Parameter Store will be used to store variables shared between CodePipeline stages.
Add link to Keybase
Describe the solution you'd like
In addition to Github, a link to Keybase would be useful
Website - Static content only
Let's build a basic website with Vue2 and tailwindcss.
Describe the solution you'd like
The website should be built with CodeBuild using code/web/buildspec.yaml.
** Success criteria
A successful build will be logged to S3 artifact:build_output, and we will download it manually to verify everything looks good.
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.