Skip to content

/AWS1/CL_FNTDEFAULTCACHEBEHAV

A complex type that describes the default cache behavior if you don't specify a CacheBehavior element or if request URLs don't match any of the values of PathPattern in CacheBehavior elements. You must create exactly one default cache behavior.

If your minimum TTL is greater than 0, CloudFront will cache content for at least the duration specified in the cache policy's minimum TTL, even if the Cache-Control: no-cache, no-store, or private directives are present in the origin headers.

CONSTRUCTOR

IMPORTING

Required arguments:

iv_targetoriginid TYPE /AWS1/FNTSTRING /AWS1/FNTSTRING

The value of ID for the origin that you want CloudFront to route requests to when they use the default cache behavior.

iv_viewerprotocolpolicy TYPE /AWS1/FNTVIEWERPROTOCOLPOLICY /AWS1/FNTVIEWERPROTOCOLPOLICY

The protocol that viewers can use to access the files in the origin specified by TargetOriginId when a request matches the path pattern in PathPattern. You can specify the following options:

  • allow-all: Viewers can use HTTP or HTTPS.

  • redirect-to-https: If a viewer submits an HTTP request, CloudFront returns an HTTP status code of 301 (Moved Permanently) to the viewer along with the HTTPS URL. The viewer then resubmits the request using the new URL.

  • https-only: If a viewer sends an HTTP request, CloudFront returns an HTTP status code of 403 (Forbidden).

For more information about requiring the HTTPS protocol, see Requiring HTTPS Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.

The only way to guarantee that viewers retrieve an object that was fetched from the origin using HTTPS is never to use any other protocol to fetch the object. If you have recently changed from HTTP to HTTPS, we recommend that you clear your objects' cache because cached objects are protocol agnostic. That means that an edge location will return an object from the cache regardless of whether the current request protocol matches the protocol used previously. For more information, see Managing Cache Expiration in the Amazon CloudFront Developer Guide.

Optional arguments:

io_trustedsigners TYPE REF TO /AWS1/CL_FNTTRUSTEDSIGNERS /AWS1/CL_FNTTRUSTEDSIGNERS

We recommend using TrustedKeyGroups instead of TrustedSigners.

This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see Unsupported features for SaaS Manager for Amazon CloudFront in the Amazon CloudFront Developer Guide.

A list of Amazon Web Services account IDs whose public keys CloudFront can use to validate signed URLs or signed cookies.

When a cache behavior contains trusted signers, CloudFront requires signed URLs or signed cookies for all requests that match the cache behavior. The URLs or cookies must be signed with the private key of a CloudFront key pair in a trusted signer's Amazon Web Services account. The signed URL or cookie contains information about which public key CloudFront should use to verify the signature. For more information, see Serving private content in the Amazon CloudFront Developer Guide.

io_trustedkeygroups TYPE REF TO /AWS1/CL_FNTTRUSTEDKEYGROUPS /AWS1/CL_FNTTRUSTEDKEYGROUPS

A list of key groups that CloudFront can use to validate signed URLs or signed cookies.

When a cache behavior contains trusted key groups, CloudFront requires signed URLs or signed cookies for all requests that match the cache behavior. The URLs or cookies must be signed with a private key whose corresponding public key is in the key group. The signed URL or cookie contains information about which public key CloudFront should use to verify the signature. For more information, see Serving private content in the Amazon CloudFront Developer Guide.

io_allowedmethods TYPE REF TO /AWS1/CL_FNTALLOWEDMETHODS /AWS1/CL_FNTALLOWEDMETHODS

AllowedMethods

iv_smoothstreaming TYPE /AWS1/FNTBOOLEAN /AWS1/FNTBOOLEAN

This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see Unsupported features for SaaS Manager for Amazon CloudFront in the Amazon CloudFront Developer Guide.

Indicates whether you want to distribute media files in the Microsoft Smooth Streaming format using the origin that is associated with this cache behavior. If so, specify true; if not, specify false. If you specify true for SmoothStreaming, you can still distribute other content using this cache behavior if the content matches the value of PathPattern.

iv_compress TYPE /AWS1/FNTBOOLEAN /AWS1/FNTBOOLEAN

Whether you want CloudFront to automatically compress certain files for this cache behavior. If so, specify true; if not, specify false. For more information, see Serving Compressed Files in the Amazon CloudFront Developer Guide.

io_lambdafuncassociations TYPE REF TO /AWS1/CL_FNTLAMBDAFUNCASSOCI00 /AWS1/CL_FNTLAMBDAFUNCASSOCI00

A complex type that contains zero or more Lambda@Edge function associations for a cache behavior.

io_functionassociations TYPE REF TO /AWS1/CL_FNTFUNCASSOCIATIONS /AWS1/CL_FNTFUNCASSOCIATIONS

A list of CloudFront functions that are associated with this cache behavior. Your functions must be published to the LIVE stage to associate them with a cache behavior.

iv_fieldlevelencryptionid TYPE /AWS1/FNTSTRING /AWS1/FNTSTRING

The value of ID for the field-level encryption configuration that you want CloudFront to use for encrypting specific fields of data for the default cache behavior.

iv_realtimelogconfigarn TYPE /AWS1/FNTSTRING /AWS1/FNTSTRING

The Amazon Resource Name (ARN) of the real-time log configuration that is attached to this cache behavior. For more information, see Real-time logs in the Amazon CloudFront Developer Guide.

iv_cachepolicyid TYPE /AWS1/FNTSTRING /AWS1/FNTSTRING

The unique identifier of the cache policy that is attached to the default cache behavior. For more information, see Creating cache policies or Using the managed cache policies in the Amazon CloudFront Developer Guide.

A DefaultCacheBehavior must include either a CachePolicyId or ForwardedValues. We recommend that you use a CachePolicyId.

iv_originrequestpolicyid TYPE /AWS1/FNTSTRING /AWS1/FNTSTRING

The unique identifier of the origin request policy that is attached to the default cache behavior. For more information, see Creating origin request policies or Using the managed origin request policies in the Amazon CloudFront Developer Guide.

iv_responseheaderspolicyid TYPE /AWS1/FNTSTRING /AWS1/FNTSTRING

The identifier for a response headers policy.

io_grpcconfig TYPE REF TO /AWS1/CL_FNTGRPCCONFIG /AWS1/CL_FNTGRPCCONFIG

The gRPC configuration for your cache behavior.

io_forwardedvalues TYPE REF TO /AWS1/CL_FNTFORWARDEDVALUES /AWS1/CL_FNTFORWARDEDVALUES

This field is deprecated. We recommend that you use a cache policy or an origin request policy instead of this field. For more information, see Working with policies in the Amazon CloudFront Developer Guide.

If you want to include values in the cache key, use a cache policy. For more information, see Creating cache policies or Using the managed cache policies in the Amazon CloudFront Developer Guide.

If you want to send values to the origin but not include them in the cache key, use an origin request policy. For more information, see Creating origin request policies or Using the managed origin request policies in the Amazon CloudFront Developer Guide.

A DefaultCacheBehavior must include either a CachePolicyId or ForwardedValues. We recommend that you use a CachePolicyId.

A complex type that specifies how CloudFront handles query strings, cookies, and HTTP headers.

iv_minttl TYPE /AWS1/FNTLONG /AWS1/FNTLONG

This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see Unsupported features for SaaS Manager for Amazon CloudFront in the Amazon CloudFront Developer Guide.

This field is deprecated. We recommend that you use the MinTTL field in a cache policy instead of this field. For more information, see Creating cache policies or Using the managed cache policies in the Amazon CloudFront Developer Guide.

The minimum amount of time that you want objects to stay in CloudFront caches before CloudFront forwards another request to your origin to determine whether the object has been updated. For more information, see Managing How Long Content Stays in an Edge Cache (Expiration) in the Amazon CloudFront Developer Guide.

You must specify 0 for MinTTL if you configure CloudFront to forward all headers to your origin (under Headers, if you specify 1 for Quantity and * for Name).

iv_defaultttl TYPE /AWS1/FNTLONG /AWS1/FNTLONG

This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see Unsupported features for SaaS Manager for Amazon CloudFront in the Amazon CloudFront Developer Guide.

This field is deprecated. We recommend that you use the DefaultTTL field in a cache policy instead of this field. For more information, see Creating cache policies or Using the managed cache policies in the Amazon CloudFront Developer Guide.

The default amount of time that you want objects to stay in CloudFront caches before CloudFront forwards another request to your origin to determine whether the object has been updated. The value that you specify applies only when your origin does not add HTTP headers such as Cache-Control max-age, Cache-Control s-maxage, and Expires to objects. For more information, see Managing How Long Content Stays in an Edge Cache (Expiration) in the Amazon CloudFront Developer Guide.

iv_maxttl TYPE /AWS1/FNTLONG /AWS1/FNTLONG

This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see Unsupported features for SaaS Manager for Amazon CloudFront in the Amazon CloudFront Developer Guide.

This field is deprecated. We recommend that you use the MaxTTL field in a cache policy instead of this field. For more information, see Creating cache policies or Using the managed cache policies in the Amazon CloudFront Developer Guide.

The maximum amount of time that you want objects to stay in CloudFront caches before CloudFront forwards another request to your origin to determine whether the object has been updated. The value that you specify applies only when your origin adds HTTP headers such as Cache-Control max-age, Cache-Control s-maxage, and Expires to objects. For more information, see Managing How Long Content Stays in an Edge Cache (Expiration) in the Amazon CloudFront Developer Guide.

Queryable Attributes

TargetOriginId

The value of ID for the origin that you want CloudFront to route requests to when they use the default cache behavior.

Accessible with the following methods

Method Description
GET_TARGETORIGINID() Getter for TARGETORIGINID, with configurable default
ASK_TARGETORIGINID() Getter for TARGETORIGINID w/ exceptions if field has no valu
HAS_TARGETORIGINID() Determine if TARGETORIGINID has a value

TrustedSigners

We recommend using TrustedKeyGroups instead of TrustedSigners.

This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see Unsupported features for SaaS Manager for Amazon CloudFront in the Amazon CloudFront Developer Guide.

A list of Amazon Web Services account IDs whose public keys CloudFront can use to validate signed URLs or signed cookies.

When a cache behavior contains trusted signers, CloudFront requires signed URLs or signed cookies for all requests that match the cache behavior. The URLs or cookies must be signed with the private key of a CloudFront key pair in a trusted signer's Amazon Web Services account. The signed URL or cookie contains information about which public key CloudFront should use to verify the signature. For more information, see Serving private content in the Amazon CloudFront Developer Guide.

Accessible with the following methods

Method Description
GET_TRUSTEDSIGNERS() Getter for TRUSTEDSIGNERS

TrustedKeyGroups

A list of key groups that CloudFront can use to validate signed URLs or signed cookies.

When a cache behavior contains trusted key groups, CloudFront requires signed URLs or signed cookies for all requests that match the cache behavior. The URLs or cookies must be signed with a private key whose corresponding public key is in the key group. The signed URL or cookie contains information about which public key CloudFront should use to verify the signature. For more information, see Serving private content in the Amazon CloudFront Developer Guide.

Accessible with the following methods

Method Description
GET_TRUSTEDKEYGROUPS() Getter for TRUSTEDKEYGROUPS

ViewerProtocolPolicy

The protocol that viewers can use to access the files in the origin specified by TargetOriginId when a request matches the path pattern in PathPattern. You can specify the following options:

  • allow-all: Viewers can use HTTP or HTTPS.

  • redirect-to-https: If a viewer submits an HTTP request, CloudFront returns an HTTP status code of 301 (Moved Permanently) to the viewer along with the HTTPS URL. The viewer then resubmits the request using the new URL.

  • https-only: If a viewer sends an HTTP request, CloudFront returns an HTTP status code of 403 (Forbidden).

For more information about requiring the HTTPS protocol, see Requiring HTTPS Between Viewers and CloudFront in the Amazon CloudFront Developer Guide.

The only way to guarantee that viewers retrieve an object that was fetched from the origin using HTTPS is never to use any other protocol to fetch the object. If you have recently changed from HTTP to HTTPS, we recommend that you clear your objects' cache because cached objects are protocol agnostic. That means that an edge location will return an object from the cache regardless of whether the current request protocol matches the protocol used previously. For more information, see Managing Cache Expiration in the Amazon CloudFront Developer Guide.

Accessible with the following methods

Method Description
GET_VIEWERPROTOCOLPOLICY() Getter for VIEWERPROTOCOLPOLICY, with configurable default
ASK_VIEWERPROTOCOLPOLICY() Getter for VIEWERPROTOCOLPOLICY w/ exceptions if field has n
HAS_VIEWERPROTOCOLPOLICY() Determine if VIEWERPROTOCOLPOLICY has a value

AllowedMethods

AllowedMethods

Accessible with the following methods

Method Description
GET_ALLOWEDMETHODS() Getter for ALLOWEDMETHODS

SmoothStreaming

This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see Unsupported features for SaaS Manager for Amazon CloudFront in the Amazon CloudFront Developer Guide.

Indicates whether you want to distribute media files in the Microsoft Smooth Streaming format using the origin that is associated with this cache behavior. If so, specify true; if not, specify false. If you specify true for SmoothStreaming, you can still distribute other content using this cache behavior if the content matches the value of PathPattern.

Accessible with the following methods

Method Description
GET_SMOOTHSTREAMING() Getter for SMOOTHSTREAMING, with configurable default
ASK_SMOOTHSTREAMING() Getter for SMOOTHSTREAMING w/ exceptions if field has no val
HAS_SMOOTHSTREAMING() Determine if SMOOTHSTREAMING has a value

Compress

Whether you want CloudFront to automatically compress certain files for this cache behavior. If so, specify true; if not, specify false. For more information, see Serving Compressed Files in the Amazon CloudFront Developer Guide.

Accessible with the following methods

Method Description
GET_COMPRESS() Getter for COMPRESS, with configurable default
ASK_COMPRESS() Getter for COMPRESS w/ exceptions if field has no value
HAS_COMPRESS() Determine if COMPRESS has a value

LambdaFunctionAssociations

A complex type that contains zero or more Lambda@Edge function associations for a cache behavior.

Accessible with the following methods

Method Description
GET_LAMBDAFUNCASSOCIATIONS() Getter for LAMBDAFUNCTIONASSOCIATIONS

FunctionAssociations

A list of CloudFront functions that are associated with this cache behavior. Your functions must be published to the LIVE stage to associate them with a cache behavior.

Accessible with the following methods

Method Description
GET_FUNCTIONASSOCIATIONS() Getter for FUNCTIONASSOCIATIONS

FieldLevelEncryptionId

The value of ID for the field-level encryption configuration that you want CloudFront to use for encrypting specific fields of data for the default cache behavior.

Accessible with the following methods

Method Description
GET_FIELDLEVELENCRYPTIONID() Getter for FIELDLEVELENCRYPTIONID, with configurable default
ASK_FIELDLEVELENCRYPTIONID() Getter for FIELDLEVELENCRYPTIONID w/ exceptions if field has
HAS_FIELDLEVELENCRYPTIONID() Determine if FIELDLEVELENCRYPTIONID has a value

RealtimeLogConfigArn

The Amazon Resource Name (ARN) of the real-time log configuration that is attached to this cache behavior. For more information, see Real-time logs in the Amazon CloudFront Developer Guide.

Accessible with the following methods

Method Description
GET_REALTIMELOGCONFIGARN() Getter for REALTIMELOGCONFIGARN, with configurable default
ASK_REALTIMELOGCONFIGARN() Getter for REALTIMELOGCONFIGARN w/ exceptions if field has n
HAS_REALTIMELOGCONFIGARN() Determine if REALTIMELOGCONFIGARN has a value

CachePolicyId

The unique identifier of the cache policy that is attached to the default cache behavior. For more information, see Creating cache policies or Using the managed cache policies in the Amazon CloudFront Developer Guide.

A DefaultCacheBehavior must include either a CachePolicyId or ForwardedValues. We recommend that you use a CachePolicyId.

Accessible with the following methods

Method Description
GET_CACHEPOLICYID() Getter for CACHEPOLICYID, with configurable default
ASK_CACHEPOLICYID() Getter for CACHEPOLICYID w/ exceptions if field has no value
HAS_CACHEPOLICYID() Determine if CACHEPOLICYID has a value

OriginRequestPolicyId

The unique identifier of the origin request policy that is attached to the default cache behavior. For more information, see Creating origin request policies or Using the managed origin request policies in the Amazon CloudFront Developer Guide.

Accessible with the following methods

Method Description
GET_ORIGINREQUESTPOLICYID() Getter for ORIGINREQUESTPOLICYID, with configurable default
ASK_ORIGINREQUESTPOLICYID() Getter for ORIGINREQUESTPOLICYID w/ exceptions if field has
HAS_ORIGINREQUESTPOLICYID() Determine if ORIGINREQUESTPOLICYID has a value

ResponseHeadersPolicyId

The identifier for a response headers policy.

Accessible with the following methods

Method Description
GET_RESPONSEHEADERSPOLICYID() Getter for RESPONSEHEADERSPOLICYID, with configurable defaul
ASK_RESPONSEHEADERSPOLICYID() Getter for RESPONSEHEADERSPOLICYID w/ exceptions if field ha
HAS_RESPONSEHEADERSPOLICYID() Determine if RESPONSEHEADERSPOLICYID has a value

GrpcConfig

The gRPC configuration for your cache behavior.

Accessible with the following methods

Method Description
GET_GRPCCONFIG() Getter for GRPCCONFIG

ForwardedValues

This field is deprecated. We recommend that you use a cache policy or an origin request policy instead of this field. For more information, see Working with policies in the Amazon CloudFront Developer Guide.

If you want to include values in the cache key, use a cache policy. For more information, see Creating cache policies or Using the managed cache policies in the Amazon CloudFront Developer Guide.

If you want to send values to the origin but not include them in the cache key, use an origin request policy. For more information, see Creating origin request policies or Using the managed origin request policies in the Amazon CloudFront Developer Guide.

A DefaultCacheBehavior must include either a CachePolicyId or ForwardedValues. We recommend that you use a CachePolicyId.

A complex type that specifies how CloudFront handles query strings, cookies, and HTTP headers.

Accessible with the following methods

Method Description
GET_FORWARDEDVALUES() Getter for FORWARDEDVALUES

MinTTL

This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see Unsupported features for SaaS Manager for Amazon CloudFront in the Amazon CloudFront Developer Guide.

This field is deprecated. We recommend that you use the MinTTL field in a cache policy instead of this field. For more information, see Creating cache policies or Using the managed cache policies in the Amazon CloudFront Developer Guide.

The minimum amount of time that you want objects to stay in CloudFront caches before CloudFront forwards another request to your origin to determine whether the object has been updated. For more information, see Managing How Long Content Stays in an Edge Cache (Expiration) in the Amazon CloudFront Developer Guide.

You must specify 0 for MinTTL if you configure CloudFront to forward all headers to your origin (under Headers, if you specify 1 for Quantity and * for Name).

Accessible with the following methods

Method Description
GET_MINTTL() Getter for MINTTL, with configurable default
ASK_MINTTL() Getter for MINTTL w/ exceptions if field has no value
HAS_MINTTL() Determine if MINTTL has a value

DefaultTTL

This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see Unsupported features for SaaS Manager for Amazon CloudFront in the Amazon CloudFront Developer Guide.

This field is deprecated. We recommend that you use the DefaultTTL field in a cache policy instead of this field. For more information, see Creating cache policies or Using the managed cache policies in the Amazon CloudFront Developer Guide.

The default amount of time that you want objects to stay in CloudFront caches before CloudFront forwards another request to your origin to determine whether the object has been updated. The value that you specify applies only when your origin does not add HTTP headers such as Cache-Control max-age, Cache-Control s-maxage, and Expires to objects. For more information, see Managing How Long Content Stays in an Edge Cache (Expiration) in the Amazon CloudFront Developer Guide.

Accessible with the following methods

Method Description
GET_DEFAULTTTL() Getter for DEFAULTTTL, with configurable default
ASK_DEFAULTTTL() Getter for DEFAULTTTL w/ exceptions if field has no value
HAS_DEFAULTTTL() Determine if DEFAULTTTL has a value

MaxTTL

This field only supports standard distributions. You can't specify this field for multi-tenant distributions. For more information, see Unsupported features for SaaS Manager for Amazon CloudFront in the Amazon CloudFront Developer Guide.

This field is deprecated. We recommend that you use the MaxTTL field in a cache policy instead of this field. For more information, see Creating cache policies or Using the managed cache policies in the Amazon CloudFront Developer Guide.

The maximum amount of time that you want objects to stay in CloudFront caches before CloudFront forwards another request to your origin to determine whether the object has been updated. The value that you specify applies only when your origin adds HTTP headers such as Cache-Control max-age, Cache-Control s-maxage, and Expires to objects. For more information, see Managing How Long Content Stays in an Edge Cache (Expiration) in the Amazon CloudFront Developer Guide.

Accessible with the following methods

Method Description
GET_MAXTTL() Getter for MAXTTL, with configurable default
ASK_MAXTTL() Getter for MAXTTL w/ exceptions if field has no value
HAS_MAXTTL() Determine if MAXTTL has a value