feat: Add fullstack Docusaurus CloudFront template

- Add modular Terraform infrastructure for Docusaurus on AWS
- Support 4 authentication types: none, basic, cognito, ip
- Add CloudFront Functions for Basic auth
- Add Lambda@Edge for Cognito OAuth2 auth
- Add AWS WAF for IP-based access control
- Add Docusaurus static site template
- Add mise configuration for version management (Terraform 1.9.8, Node.js 20)
- Add GitHub Actions workflow for automated deployment
- Add comprehensive documentation (README.md, MISE.md)

Author: fshmng09

.github/workflows/deploy.yml

@@ -0,0 +1,79 @@
+name: Deploy Docusaurus to S3 + CloudFront
+
+on:
+  # push:
+  #   branches:
+  #     - main
+  #   paths:
+  #     - 'docs-site/**'
+  #     - '.github/workflows/deploy.yml'
+  workflow_dispatch:
+
+permissions:
+  id-token: write
+  contents: read
+
+jobs:
+  deploy:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20'
+          cache: 'npm'
+          cache-dependency-path: 'docs-site/package-lock.json'
+
+      - name: Install dependencies
+        working-directory: docs-site
+        run: npm ci
+
+      - name: Build Docusaurus site
+        working-directory: docs-site
+        run: npm run build
+
+      - name: Configure AWS credentials
+        uses: aws-actions/configure-aws-credentials@v4
+        with:
+          role-to-assume: ${{ secrets.AWS_ROLE_ARN }}
+          aws-region: ap-northeast-1
+
+      - name: Sync to S3
+        working-directory: docs-site/build
+        run: |
+          aws s3 sync . s3://${{ secrets.AWS_S3_BUCKET }} \
+            --delete \
+            --cache-control "public, max-age=31536000, immutable" \
+            --exclude "*.html" \
+            --exclude "*.xml" \
+            --exclude "*.json"
+
+          # HTML files with no cache
+          aws s3 sync . s3://${{ secrets.AWS_S3_BUCKET }} \
+            --cache-control "public, max-age=0, must-revalidate" \
+            --content-type "text/html" \
+            --exclude "*" \
+            --include "*.html"
+
+          # XML and JSON files with short cache
+          aws s3 sync . s3://${{ secrets.AWS_S3_BUCKET }} \
+            --cache-control "public, max-age=3600" \
+            --exclude "*" \
+            --include "*.xml" \
+            --include "*.json"
+
+      - name: Invalidate CloudFront cache
+        run: |
+          aws cloudfront create-invalidation \
+            --distribution-id ${{ secrets.AWS_CLOUDFRONT_DISTRIBUTION_ID }} \
+            --paths "/*"
+
+      - name: Deployment summary
+        run: |
+          echo " Deployment completed successfully!"
+          echo "=� S3 Bucket: ${{ secrets.AWS_S3_BUCKET }}"
+          echo "< CloudFront Distribution: ${{ secrets.AWS_CLOUDFRONT_DISTRIBUTION_ID }}"

.gitignore

@@ -0,0 +1,46 @@
+# Dependencies
+node_modules/
+package-lock.json
+yarn.lock
+
+# Production build
+build/
+dist/
+.docusaurus/
+.cache-loader/
+
+# Terraform
+**/.terraform/
+**/.terraform.lock.hcl
+**/terraform.tfstate
+**/terraform.tfstate.backup
+**/terraform.tfvars
+**/lambda_build/
+**/lambda_function.zip
+
+# Environment variables
+.env
+.env.local
+.env.*.local
+
+# IDE
+.vscode/
+.idea/
+*.swp
+*.swo
+*~
+.DS_Store
+
+# Logs
+npm-debug.log*
+yarn-debug.log*
+yarn-error.log*
+logs/
+*.log
+
+# OS
+Thumbs.db
+.DS_Store
+
+# mise
+.mise.local.toml

.mise.toml

@@ -0,0 +1,11 @@
+# mise configuration for fullstack-docusaurus-cloudfront
+# https://mise.jdx.dev/
+
+[tools]
+# Global tools
+terraform = "1.9.8"
+node = "20.18.0"
+
+[env]
+# Environment variables
+_.file = ".env"

MISE.md

@@ -0,0 +1,211 @@
+# mise Version Management Guide
+
+This project uses [mise](https://mise.jdx.dev/) for managing tool versions (Terraform and Node.js).
+
+## Why mise?
+
+- **Consistent versions**: Ensure everyone uses the same Terraform 1.9.8 and Node.js 20
+- **Automatic switching**: Automatically use correct versions when entering directories
+- **Project isolation**: Different projects can use different versions
+- **Built-in tasks**: Run common commands with `mise run <task>`
+
+## Installation
+
+### macOS/Linux
+```bash
+curl https://mise.run | sh
+```
+
+### Alternative: Homebrew (macOS)
+```bash
+brew install mise
+```
+
+### Shell Setup
+
+Add to your shell profile (`~/.bashrc`, `~/.zshrc`, etc.):
+
+```bash
+eval "$(mise activate bash)"  # for bash
+eval "$(mise activate zsh)"   # for zsh
+```
+
+## Quick Start
+
+```bash
+# 1. Clone and enter project
+cd fullstack-docusaurus-cloudfront
+
+# 2. Trust the mise configuration
+mise trust
+
+# 3. Install all tools (Terraform + Node.js)
+mise install
+
+# 4. Verify installation
+mise list
+# terraform 1.9.8
+# node      20.18.0
+```
+
+## Configuration Files
+
+### Root: `.mise.toml`
+- Global tools for the entire project
+- Terraform 1.9.8
+- Node.js 20.18.0
+
+### `infra/.mise.toml`
+- Terraform-specific configuration
+- Useful tasks for infrastructure management
+
+### `docs-site/.mise.toml`
+- Node.js-specific configuration
+- Useful tasks for Docusaurus development
+
+## Using mise Tasks
+
+### Infrastructure Tasks (from `infra/` directory)
+
+```bash
+cd infra
+
+# Initialize Terraform
+mise run init
+
+# Plan infrastructure changes
+mise run plan
+
+# Apply changes
+mise run apply
+
+# Format Terraform files
+mise run fmt
+
+# Install Lambda dependencies
+mise run lambda-install
+```
+
+### Docusaurus Tasks (from `docs-site/` directory)
+
+```bash
+cd docs-site
+
+# Install dependencies
+mise run install
+
+# Start development server
+mise run dev
+
+# Build for production
+mise run build
+
+# Type checking
+mise run typecheck
+```
+
+## Using Tools Directly
+
+mise ensures correct versions are used:
+
+```bash
+# Terraform (automatically uses 1.9.8)
+cd infra/environments/dev
+terraform init
+terraform plan
+
+# Node.js (automatically uses 20.18.0)
+cd docs-site
+npm install
+npm start
+```
+
+## Explicit Execution with mise exec
+
+Force use of mise-managed versions:
+
+```bash
+# Explicit Terraform execution
+mise exec -- terraform init
+mise exec -- terraform plan
+
+# Explicit npm execution
+mise exec -- npm install
+mise exec -- npm run build
+```
+
+## Checking Current Versions
+
+```bash
+# Show all installed tools
+mise list
+
+# Show current directory's tool versions
+mise current
+
+# Show tool installation path
+mise which terraform
+mise which node
+```
+
+## Updating Tool Versions
+
+Edit `.mise.toml` files and run:
+
+```bash
+mise install
+```
+
+Example:
+```toml
+[tools]
+terraform = "1.10.0"  # Update to newer version
+node = "22.0.0"       # Update to newer version
+```
+
+## Troubleshooting
+
+### Tools not found
+```bash
+# Reinstall tools
+mise install
+
+# Check if mise is activated in shell
+which mise
+```
+
+### Wrong version being used
+```bash
+# Check current versions
+mise current
+
+# Ensure you've trusted the config
+mise trust
+
+# Reload shell
+exec $SHELL
+```
+
+### Task not found
+```bash
+# List all available tasks
+mise tasks
+
+# Run from correct directory
+cd infra  # for infrastructure tasks
+cd docs-site  # for docusaurus tasks
+```
+
+## Without mise
+
+You can still use the project without mise by installing:
+- Terraform 1.9.8 manually
+- Node.js 20.18.0 manually
+
+Just run commands directly without `mise run` or `mise exec`.
+
+## References
+
+- [mise Documentation](https://mise.jdx.dev/)
+- [mise GitHub](https://github.com/jdx/mise)
+- [Task Runner](https://mise.jdx.dev/tasks/)

README.md

@@ -0,0 +1,29 @@
+# mise configuration for Docusaurus site
+# https://mise.jdx.dev/
+
+[tools]
+node = "20.18.0"
+
+[tasks.install]
+description = "Install dependencies"
+run = "npm install"
+
+[tasks.dev]
+description = "Start development server"
+run = "npm start"
+
+[tasks.build]
+description = "Build for production"
+run = "npm run build"
+
+[tasks.serve]
+description = "Serve production build"
+run = "npm run serve"
+
+[tasks.typecheck]
+description = "Run TypeScript type checking"
+run = "npm run typecheck"
+
+[tasks.clean]
+description = "Clean build artifacts"
+run = "npm run clear"