/serverless-cloudfront-distribution-certificate

This is a plugin for automatic creation of certificate for cloudfront distribution

Primary LanguageTypeScriptMIT LicenseMIT

serverless-cloudfront-distribution-certificate

This serverless plugin manages to create certificate for specified CloudFront distribution. It also handles validation trough dns and ROUTE 53.

serverless npm version MIT licensed

Usage

Installation

npm install serverless-cloudfront-distribution-certificate --save-dev

Configuration

plugins:
  - serverless-cloudfront-distribution-certificate

custom:
  cfdDomain:
    domainNames:
      - "serverless.example.com"
      - "server.example.com"
      - "doggo.example.com"
    cloudFront: CloudFrontDistribution
    retries: 15
    minimumProtocolVersion: TLSv1.2_2018

Where domainNames are domains for which ssl certificate should be generated, cloudFront is the logical name of your CloudFront distribution, and minimumProtocolVersion is the ViewerCertificate's MinimumProtocolVersion setting (optional).

Note

To use an ACM Certificate with CloudFront, you must request the certificate in the US East (N. Virginia) region. ACM Certificates in this region that are associated with a CloudFront distribution are distributed to all the geographic locations configured for that distribution.

This plugin will wait up to 15 minutes for certificate to be issued. If the state won't be issued within 15 minutes, it will fail. 15 Additionaly you can specify number of retries by providing retries option. This number is used when checking if certificate is issued (1 retry == 1 minute), or when waiting for route record to be created (1 retry == 2 seconds).