awscc_cloudfront_response_headers_policy (Resource)

Resource Type definition for AWS::CloudFront::ResponseHeadersPolicy

Example Usage

The example below creates a CloudFront response headers policy.

resource "awscc_cloudfront_response_headers_policy" "example" {
  response_headers_policy_config = {
    name    = "example-policy"
    comment = "test comment"
    cors_config = {
      access_control_allow_credentials = true

      access_control_allow_headers = {
        items = ["test"]
      }

      access_control_allow_methods = {
        items = ["GET"]
      }

      access_control_allow_origins = {
        items = ["test.example.comtest"]
      }

      origin_override = true
    }
  }
}

The example below creates a CloudFront response headers policy with a custom headers config.

resource "awscc_cloudfront_response_headers_policy" "example" {
  response_headers_policy_config = {
    name = "example-policy"
    custom_headers_config = {
      items = [
        {
          header   = "X-Permitted-Cross-Domain-Policies"
          override = true
          value    = "none"
          }, {
          header   = "X-Test"
          override = true
          value    = "none"
        }
      ]
    }
  }
}

The example below creates a CloudFront response headers policy with a custom headers config and server timing headers config.

resource "awscc_cloudfront_response_headers_policy" "example" {
  response_headers_policy_config = {
    name = "example-headers-policy"

    custom_headers_config = {
      items = [
        {
          header   = "X-Permitted-Cross-Domain-Policies"
          override = true
          value    = "none"
        }
      ]
    }
    server_timing_headers_config = {
      enabled       = true
      sampling_rate = 50
    }
  }
}

Schema

Required

Read-Only

Nested Schema for response_headers_policy_config

Required:

Optional:

Nested Schema for response_headers_policy_config.cors_config

Required:

Optional:

Nested Schema for response_headers_policy_config.cors_config.access_control_allow_headers

Required:

Nested Schema for response_headers_policy_config.cors_config.access_control_allow_methods

Required:

Nested Schema for response_headers_policy_config.cors_config.access_control_allow_origins

Required:

Nested Schema for response_headers_policy_config.cors_config.access_control_expose_headers

Required:

Nested Schema for response_headers_policy_config.custom_headers_config

Required:

Nested Schema for response_headers_policy_config.custom_headers_config.items

Required:

Nested Schema for response_headers_policy_config.remove_headers_config

Required:

Nested Schema for response_headers_policy_config.remove_headers_config.items

Required:

Nested Schema for response_headers_policy_config.security_headers_config

Optional:

Nested Schema for response_headers_policy_config.security_headers_config.content_security_policy

Required:

Nested Schema for response_headers_policy_config.security_headers_config.content_type_options

Required:

Nested Schema for response_headers_policy_config.security_headers_config.frame_options

Required:

Nested Schema for response_headers_policy_config.security_headers_config.referrer_policy

Required:

Nested Schema for response_headers_policy_config.security_headers_config.strict_transport_security

Required:

Optional:

Nested Schema for response_headers_policy_config.security_headers_config.xss_protection

Required:

Optional:

Nested Schema for response_headers_policy_config.server_timing_headers_config

Required:

Optional:

Import

Import is supported using the following syntax:

$ terraform import awscc_cloudfront_response_headers_policy.example <resource ID>