response_headers_policies

Creates, updates, deletes or gets a response_headers_policy resource or lists response_headers_policies in a region

Overview

Name	`response_headers_policies`
Type	Resource
Description	A response headers policy. A response headers policy contains information about a set of HTTP response headers. After you create a response headers policy, you can use its ID to attach it to one or more cache behaviors in a CloudFront distribution. When it's attached to a cache behavior, the response headers policy affects the HTTP headers that CloudFront includes in HTTP responses to requests that match the cache behavior. CloudFront adds or removes response headers according to the configuration of the response headers policy. For more information, see [Adding or removing HTTP headers in CloudFront responses](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/modifying-response-headers.html) in the Amazon CloudFront Developer Guide.
Id	`aws.cloudfront.response_headers_policies`

Fields

Name	Datatype	Description
`id`	`string`
`last_modified_time`	`string`
`response_headers_policy_config`	`object`	A response headers policy configuration.
`region`	`string`	AWS region.

For more information, see AWS::CloudFront::ResponseHeadersPolicy.

Methods

Name	Accessible by	Required Params
`create_resource`	`INSERT`	`ResponseHeadersPolicyConfig, region`
`delete_resource`	`DELETE`	`data__Identifier, region`
`update_resource`	`UPDATE`	`data__Identifier, data__PatchDocument, region`
`list_resources`	`SELECT`	`region`
`get_resource`	`SELECT`	`data__Identifier, region`

`SELECT` examples

Gets all response_headers_policies in a region.

SELECT
region,
id,
last_modified_time,
response_headers_policy_config
FROM aws.cloudfront.response_headers_policies
;

Gets all properties from an individual response_headers_policy.

SELECT
region,
id,
last_modified_time,
response_headers_policy_config
FROM aws.cloudfront.response_headers_policies
WHERE data__Identifier = '<Id>';

`INSERT` example

Use the following StackQL query and manifest file to create a new response_headers_policy resource, using stack-deploy.

Required Properties
All Properties
Manifest

/*+ create */
INSERT INTO aws.cloudfront.response_headers_policies (
 ResponseHeadersPolicyConfig,
 region
)
SELECT 
'{{ ResponseHeadersPolicyConfig }}',
'{{ region }}';

/*+ create */
INSERT INTO aws.cloudfront.response_headers_policies (
 ResponseHeadersPolicyConfig,
 region
)
SELECT 
 '{{ ResponseHeadersPolicyConfig }}',
 '{{ region }}';

version: 1
name: stack name
description: stack description
providers:
  - aws
globals:
  - name: region
    value: '{{ vars.AWS_REGION }}'
resources:
  - name: response_headers_policy
    props:
      - name: ResponseHeadersPolicyConfig
        value:
          Comment: '{{ Comment }}'
          CorsConfig:
            AccessControlAllowCredentials: '{{ AccessControlAllowCredentials }}'
            AccessControlAllowHeaders:
              Items:
                - '{{ Items[0] }}'
            AccessControlAllowMethods:
              Items:
                - '{{ Items[0] }}'
            AccessControlAllowOrigins:
              Items:
                - '{{ Items[0] }}'
            AccessControlExposeHeaders:
              Items:
                - '{{ Items[0] }}'
            AccessControlMaxAgeSec: '{{ AccessControlMaxAgeSec }}'
            OriginOverride: '{{ OriginOverride }}'
          CustomHeadersConfig:
            Items:
              - Header: '{{ Header }}'
                Override: '{{ Override }}'
                Value: '{{ Value }}'
          Name: '{{ Name }}'
          RemoveHeadersConfig:
            Items:
              - Header: '{{ Header }}'
          SecurityHeadersConfig:
            ContentSecurityPolicy:
              ContentSecurityPolicy: '{{ ContentSecurityPolicy }}'
              Override: '{{ Override }}'
            ContentTypeOptions:
              Override: '{{ Override }}'
            FrameOptions:
              FrameOption: '{{ FrameOption }}'
              Override: '{{ Override }}'
            ReferrerPolicy:
              Override: '{{ Override }}'
              ReferrerPolicy: '{{ ReferrerPolicy }}'
            StrictTransportSecurity:
              AccessControlMaxAgeSec: '{{ AccessControlMaxAgeSec }}'
              IncludeSubdomains: '{{ IncludeSubdomains }}'
              Override: '{{ Override }}'
              Preload: '{{ Preload }}'
            XSSProtection:
              ModeBlock: '{{ ModeBlock }}'
              Override: '{{ Override }}'
              Protection: '{{ Protection }}'
              ReportUri: '{{ ReportUri }}'
          ServerTimingHeadersConfig:
            Enabled: '{{ Enabled }}'
            SamplingRate: null

`DELETE` example

/*+ delete */
DELETE FROM aws.cloudfront.response_headers_policies
WHERE data__Identifier = '<Id>'
AND region = 'us-east-1';

Permissions

To operate on the response_headers_policies resource, the following permissions are required:

Create

cloudfront:CreateResponseHeadersPolicy

Delete

cloudfront:DeleteResponseHeadersPolicy,
cloudfront:GetResponseHeadersPolicy

List

cloudfront:ListResponseHeadersPolicies

Read

cloudfront:GetResponseHeadersPolicy

Update

cloudfront:UpdateResponseHeadersPolicy,
cloudfront:GetResponseHeadersPolicy

Overview​

Fields​

Methods​

SELECT examples​

INSERT example​

DELETE example​

Permissions​

Create​

Delete​

List​

Read​

Update​