AWS Single Signon with Google Accounts for Business

Preventing proliferation of long lived credentials with a SSO and MFA strategy for organisation accounts

Please be aware that blog articles are a poor source for learning and you should always cross-reference with the official documentation.

Introduction

The aims of the build is to create a fast and cheaply hosted static website with an emphasis on security.

Tooling

This project will require three tools to be installed locally, GoHugo, Terraform and AWS CLI

Terraform

Terraform is an Infrastructure as Code tool for documenting and managing and deploying infrastructure.

We will be using this tool for deploying a CloudFront distribution, ACM Certificates, Lambda functions and DNS route to along with IAM permissions and policies.

https://developer.hashicorp.com/terraform/intro

Hugo

Hugo is a static site generator

We will be using this to deploy a static website and deploy these assets to Cloudfront distribution

https://developer.hashicorp.com/terraform/intro

AWS Command Line

The AWS Command Line Interface (AWS CLI) is a unified tool to manage your AWS services.

Installation instructions can be found here

https://aws.amazon.com/cli/

The infrastructure