update lambda and workflow to handle secure s3 bucket

Signed-off-by: CrazyMax <[email protected]>

Author: crazy-max

.github/workflows/deploy.yml

@@ -100,7 +100,6 @@ jobs:
         if: ${{ env.DOCS_S3_BUCKET != '' }}
         run: |
           aws --region ${{ env.DOCS_AWS_REGION }} s3 sync \
-            --acl public-read \
             --delete \
             --exclude "*" \
             --include "*.webp" \
@@ -109,7 +108,6 @@ jobs:
             --content-type="image/webp" \
             public s3://${{ env.DOCS_S3_BUCKET }}/
           aws --region ${{ env.DOCS_AWS_REGION }} s3 sync \
-            --acl public-read \
             --delete \
             --exclude "*.webp" \
             public s3://${{ env.DOCS_S3_BUCKET }}/

hack/releaser/cloudfront-lambda-redirects.js

@@ -52,5 +52,22 @@ exports.handler = (event, context, callback) => {
         return
     }
 
+    // Handle directory requests by appending index.html for requests without file extensions
+    let uri = request.uri;
+
+    // Check if the URI has a dot after the last slash (indicating a filename)
+    // This is more accurate than just checking the end of the URI
+    const hasFileExtension = /\.[^/]*$/.test(uri.split('/').pop());
+
+    // If it's not a file, treat it as a directory and append index.html
+    if (!hasFileExtension) {
+        // Ensure the URI ends with a slash before appending index.html
+        if (!uri.endsWith("/")) {
+            uri += "/";
+        }
+        uri += "index.html";
+        request.uri = uri;
+    }
+
     callback(null, request);
 };