Helper module to simplify ACM certificate fetching and validation. Tested and used for ALB and CloudFront.
Use an us-east-1 provider for aws.acm_certificate_region if you need certificates for CloudFront.
When var.domain_name_override is provided then var.hosted_zone_id is
assumed NULL and then certificates will be created assuming an external DNS
will verify this. The module will output on manual_provisioning_instructions
on how to verify and this output can also be reused by other providers (e.g.
CloudFlare).
...
To use this module ...
{
some_conf = "might need explanation"
}| Name | Version |
|---|---|
| aws | >=4.21.0 |
| aws.acm_certificate_region | >=4.21.0 |
No modules.
| Name | Type |
|---|---|
| aws_acm_certificate.this | resource |
| aws_acm_certificate_validation.validation_wait | resource |
| aws_route53_record.caa | resource |
| aws_route53_record.validation_record | resource |
| aws_route53_zone.this | data source |
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| domain_name_override | Domain name to create SSL certificate for if hosted_zone_id is not provided. Will prepend var.name with a dot in front of it. | string |
null |
no |
| hosted_zone_id | Authoritative hosted zone that can validate the SSL certificate. Set to null for manual certificate provisioning. | string |
n/a | yes |
| name | Full service name to add to domain name. | string |
n/a | yes |
| Name | Description |
|---|---|
| acm_certificate_arn | n/a |
| acm_certificate_fqdn | n/a |
| manual_provisioning_instructions | n/a |