Configuring a subdirectory with AWS using CloudFront and Route 53
Host your documentation with a /docs subdirectory using AWS CloudFront and Route 53.
Last updated
Was this helpful?
Host your documentation with a /docs subdirectory using AWS CloudFront and Route 53.
Last updated
Was this helpful?
Was this helpful?
In your GitBook organization, click on your docs site name in the sidebar, then click Manage site or open the Settings tab. Open the Domain and redirects section and under ‘Subdirectory’, click Set up a subdirectory.
Enter the URL where you would like to host your docs. Then specify the subdirectory for docs access, e.g. example.com/docs
, and click Configure.
Under Additional configuration, you will now see a proxy URL. You’ll use this in the next step when configuring your Lambda function. Copy it to your clipboard.
Sign into your AWS Console and navigate to Lambda.
Click the Create function button.
Choose Author from scratch, then:
Give your function a descriptive name, like gitbook-subpath-proxy.
Select Node.js as the runtime (use the latest available version).
Leave the architecture and other settings as default.
Click Create function.
In the Lambda function editor, replace the default code with the following:
export const handler = async (event) => {
const request = event.Records[0].cf.request;
// update if your subdirectory is not /docs
const subdirectory = '/docs';
// update with your proxy URL below
const target = new URL('<proxy URL you got from GitBook>');
// rewrite: /docs* -> proxy.gitbook.site
if (request.uri.startsWith(subdirectory)) {
request.uri = target.pathname + request.uri.substring(subdirectory.length);
// Remove trailing slash if present
if (request.uri.endsWith('/')) {
request.uri = request.uri.slice(0, -1);
}
request.origin = {
custom: {
domainName: target.host,
port: 443,
protocol: 'https',
path: '',
sslProtocols: ['TLSv1.2'],
readTimeout: 30,
keepaliveTimeout: 5,
customHeaders: {},
},
};
request.headers['host'] = [{ key: 'host', value: target.host }];
request.headers['x-forwarded-host'] = [{ key: 'x-forwarded-host', value: target.host }];
}
return request;
};
Be sure to update target
on line 8 with the proxy URL you got from GitBook in the first step. This will look like https://proxy.gitbook.site/sites/site_XXXX
Also be sure to update subdirectory
on line 5 if you’re using a different subdirectory path than /docs
.
Click Deploy to save your changes.
Before you can use your Lambda function with CloudFront, you need to configure the execution role to allow Lambda@Edge to assume it.
In your Lambda function, click on the Configuration tab
Click Permissions in the left sidebar
Under Execution role, click on the role name to open it in IAM
Click the Trust relationships tab
Click Edit trust policy
Replace the trust policy with the following:
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": {
"Service": [
"edgelambda.amazonaws.com",
"lambda.amazonaws.com"
]
},
"Action": "sts:AssumeRole"
}
]
}
Click Update policy to save.
Lambda@Edge requires a published version (not just $LATEST
).
In your Lambda function, click the Actions dropdown in the upper right
Select Publish new version
Optionally add a description like “Initial version for CloudFront”
Click Publish
Important: Copy the ARN of the published version that appears at the top of the page (it will include a version number at the end, like arn:aws:lambda:us-east-1:123456789:function:gitbook-subpath-proxy:1
)
Lambda@Edge functions must be created in the us-east-1 (N. Virginia) region. If you created your function in a different region, you’ll need to recreate it in us-east-1.
Navigate to CloudFront in the AWS Console and click Create distribution.
Configure the following settings. Where settings are not specified, keep the default settings.
Specify origin
Origin type
Other
Custom origin
Your main website domain (e.g., example.com
)
Cache settings
Cache policy
CachingDisabled
Origin request policy
AllViewerExceptHostHeader
Click Next, select your preferred security protections, then click Next again.
Click Create distribution.
Wait for the distribution to deploy (status will change from “In Progress” to “Enabled”). This may take several minutes.
Once your CloudFront distribution is deployed:
Click on your distribution ID to open its settings
Go to the Behaviors tab
Select the default behavior and click Edit
Scroll down to Function associations
Under Origin request, select Lambda@Edge
In the Lambda function ARN field, paste the ARN of your published Lambda function (from step 5)
Check Include body to allow the function to access request bodies if needed
Click Save changes
On the main page of your CloudFront distribution, click the General tab, and under Alternate domain names, click Add domain
Enter the domain for which you are configuring your subdirectory e.g. example.com
and click Next
Select your existing TLS certificate, or create a new one, if needed, and click Next again
If you’re using Route 53 for DNS, you’ll need to create or update your DNS records to point to your CloudFront distribution.
While remaining on the main page for your CloudFront distribution, make sure you are on the General tab, then below the URL that you have configured in Alternate domain names, click Route domains to CloudFront.
Click on Set up routing automatically to create A and AAAA DNS records for your domain
Once all changes have propagated (this can take 10–15 minutes):
Open a browser and navigate to your domain with the subdirectory path (e.g., https://example.com/docs
)
You should see your GitBook documentation site!
If the site doesn’t load immediately, try:
Waiting a few more minutes for DNS propagation
Clearing your browser cache or trying an incognito window
Running nslookup yourdomain.com
in terminal to verify DNS is resolving correctly
Checking CloudFront distribution status is “Enabled” and not “In Progress”
Congratulations! Your GitBook documentation is now accessible via your custom subdirectory.
Lambda function not triggering:
Ensure you published a version of your Lambda function (not using $LATEST
)
Verify the Lambda function is in the us-east-1 region
Check that the trust policy includes edgelambda.amazonaws.com
DNS not resolving:
DNS changes can take time to propagate (up to 48 hours, though usually much faster)
Verify your Route 53 records are pointing to the correct CloudFront distribution
Check that you deleted any old conflicting DNS records
SSL certificate errors:
Ensure your SSL certificate in AWS Certificate Manager includes your custom domain
Certificates for CloudFront must be created in the us-east-1 region
Subdirectory not working:
Verify the SUBDIRECTORY
value in your Lambda function matches what you configured in GitBook
Check that the target
in your Lambda function is correct
Review CloudFront logs to see if requests are reaching the distribution