docs: add CloudFront WAF example

[Apoorvjain09]

What this does

Adds an example showing how to associate an AWS WAF Web ACL with a
CloudFront distribution created by sst.aws.Nextjs.

Why this is needed

For CloudFront, WAF must be attached at distribution creation time using
webAclId. This differs from the ALB / API Gateway pattern and was not
previously documented, making it easy to get wrong.

Closes #6319

[vimtor]

thanks for your contribution @Apoorvjain09

i left some comments with errors i found

[vimtor]

rename this to:

Suggested change

	name: "sst-v3",
	name: "aws-cloudfront-waf",

[vimtor]

this gives the following error:

you might want to use a simple StaticSite or add a real Next.js site to the example

[vimtor]

the docs don't render properly for this example:

probably because of the different indentation

follow the README to test the docs locally

[Apoorvjain09]

Thanks for the feedback and for pointing these out 🙂

I’ve updated the example to:

• Rename the app from sst-v3 to aws-cloudfront-waf
• Switch from NextjsSite to a simple StaticSite so the example runs without requiring a full Next.js setup
• Fix the indentation in the doc comment so it renders correctly in the docs

I initially kept the changes limited to sst.config.ts to focus on the CloudFront + WAF attachment pattern, but I’m happy to adjust further if anything else should be structured differently.

[vimtor]

working, i left a final comment @Apoorvjain09

[vimtor]

Suggested change

	buildOutput: "public",
	path: "public",

could you create a folder with public/index.html to complete the example?

[Apoorvjain09]

Done 👍 @vimtor

Switched to path: "public" and added a minimal public/index.html so the example runs out of the box.

[vimtor]

the index.html should be inside the public folder

[Apoorvjain09]

Done 👍 @vimtor
Moved index.html into the public/ folder.

[vimtor]

thanks for your contribution!

[vimtor]

we should wait for #6379