AWS WAF Use cases, Amplify Adds Hosted Site Firewall Support

Web app owners endeavour to protect their programs from hazards. You used to need Amazon CloudFront distributions with AWS WAF protection to secure Amplify Hosted apps

[{"selector":"#anim-4175e75d-146e-4692-a374-159ea1a384b7","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-9f6e65fa-f017-4f9b-9369-a3086de22dde","keyframes":{"transform":["translate3d(-115.09434%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-2a1b1dd7-dc62-4b91-ac0f-9cd3e6706123 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(-12.514648210040342%, 0, 0)","translate3d(0%, 0, 0)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"both"}]

Now that Amplify Hosting usually supports AWS WAF, you can leverage infrastructure as code (IaC) or a one-click integration in the dashboard to attach a web application firewall to your AWS Amplify apps

[{"selector":"#anim-3f9b82df-9aa5-408e-b701-8b9423a1a086","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-f9e0bf0d-f278-4a3a-991e-3cd91138b365 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(12.514648210040342%, 0, 0)","translate3d(0%, 0, 0)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"both"}]

You can use defense-in-depth security techniques for your web apps with the aid of this new feature

[{"selector":"#anim-58a2a589-e69d-469b-9365-baf88847ba46","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-17f54272-7430-4a7a-b5f3-f0995aa995c4","keyframes":{"transform":["translate3d(0px, 203.10843%, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-4dfde362-abf1-4ae1-a482-44139607d0e0 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate(0%, 0%) scale(1.5)","translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"forwards"}]

Setting up AWS WAF for your Amplify app is simple. The Firewall page in your AWS Amplify dashboard app settings lets you select predefined rules for your configuration

[{"selector":"#anim-3f72065d-9646-47b1-a624-0ec25992be9a [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(-12.514648210040342%, 0, 0) translate(-25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"fill":"forwards"}] [{"selector":"#anim-eae21959-4588-47bb-b797-9b5f33815da6","keyframes":{"transform":["translate3d(-114.46541%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":1000,"easing":"cubic-bezier(.2, 0, .8, 1)","fill":"both"}] [{"selector":"#anim-0a2f1a87-cb60-405a-b8c1-8e70b240c0dc","keyframes":{"transform":["rotateZ(-180deg)","rotateZ(0deg)"]},"delay":0,"duration":1000,"easing":"cubic-bezier(.2, 0, .5, 1)","fill":"forwards"}]

Firewall rule configuration is made easier with Amplify hosting. There are four types of protection that you can activate. Amplify-recommended firewall protection Restrict access to amplifyapp.com Turn on IP address security Turn on national defence

[{"selector":"#anim-74d46f26-41f2-4af6-b361-39ce8fc8e23c","keyframes":{"transform":["rotate(-540deg) scale(0.1)","none"],"opacity":[0,1]},"delay":0,"duration":1000,"fill":"both","iterations":1}]

Protections activated using the Amplify panel generate a web access control list in your AWS account. Create fine-grained rulesets with the AWS WAF console rule builder

[{"selector":"#anim-f4992e80-2a16-4a1d-84bb-46aee6a9e2c8 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(-12.514648210040342%, 0, 0)","translate3d(0%, 0, 0)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"both"}] [{"selector":"#anim-f6a7b4cf-7ae0-41fb-8dd3-e9db244c69d6","keyframes":{"transform":["translate3d(-119.66102%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-44d54afe-77ee-40eb-a398-9832c58eecbe","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-a1265558-5186-4c29-8666-c22e0049724e","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}]

The cost of this integration is determined on the quantity of web ACLs, rules, and requests you utilise, and it is priced according to the regular AWS WAF pricing model

[{"selector":"#anim-0036cc79-dce1-4b0b-8445-8485989447ee","keyframes":{"transform":["translate3d(115.09433%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":1000,"easing":"cubic-bezier(.2, 0, .8, 1)","fill":"both"}] [{"selector":"#anim-f0b7e18a-c153-4bc1-99c2-d2c38affc6d1","keyframes":{"transform":["rotateZ(180deg)","rotateZ(0deg)"]},"delay":0,"duration":1000,"easing":"cubic-bezier(.2, 0, .5, 1)","fill":"forwards"}] [{"selector":"#anim-7f9d39c4-6306-4f46-afe9-ce1c28eb4b0d [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(12.514648210040342%, 0, 0)","translate3d(0%, 0, 0)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"both"}]

Rules can be automatically created, maintained, and integrated into the design and development process

[{"selector":"#anim-583a06bd-7bcc-404d-8f6e-4b7fdf704886","keyframes":{"opacity":[1,1]},"delay":0,"duration":2000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"both"}] [{"selector":"#anim-7198d8fd-f930-43dc-9cd4-91665bf6345a","keyframes":{"transform":["scale(3)","scale(1)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"forwards"}] [{"selector":"#anim-f21f80a3-8681-41e2-a49f-c5db31ce13ac [data-leaf-element=\"true\"]","keyframes":{"transform":["translate(0%, 0%) scale(1.5)","translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"forwards"}]