This serverless plugin manages to create certificate for specified CloudFront distribution. It also handles validation trough dns and ROUTE 53.
npm install serverless-cloudfront-distribution-certificate --save-dev
plugins:
- serverless-cloudfront-distribution-certificate
custom:
cfdDomain:
domainNames:
- "serverless.example.com"
- "server.example.com"
- "doggo.example.com"
cloudFront: CloudFrontDistribution
retries: 15
minimumProtocolVersion: TLSv1.2_2018
Where domainNames
are domains for which ssl certificate should be generated, cloudFront
is the logical name of your CloudFront distribution, and minimumProtocolVersion
is the ViewerCertificate's MinimumProtocolVersion setting (optional).
To use an ACM Certificate with CloudFront, you must request the certificate in the US East (N. Virginia) region. ACM Certificates in this region that are associated with a CloudFront distribution are distributed to all the geographic locations configured for that distribution.
This plugin will wait up to 15 minutes for certificate to be issued. If the state won't be issued within 15 minutes, it will fail. 15 Additionaly you can specify number of retries by providing retries option. This number is used when checking if certificate is issued (1 retry == 1 minute), or when waiting for route record to be created (1 retry == 2 seconds).