LoginSignup
0
1

More than 3 years have passed since last update.

@kyohah

terraformでcloudfront用のACMを取得する

Posted at

aliasを使い、providerで選択する。


provider "aws" {
  alias  = "virginia"
  region = "us-east-1"
}

resource "aws_acm_certificate" "main" {
  provider = aws.virginia
}

domain_validation_optionsのSetはfor_eachで実装する.

provider "aws" {}
provider "aws" {
  alias  = "virginia"
  region = "us-east-1"
}

data "aws_route53_zone" "main" {
  name = "example.com."
}

resource "aws_acm_certificate" "main" {
  domain_name       = data.aws_route53_zone.main.name
  validation_method = "DNS"
  provider          = aws.virginia

  lifecycle {
    create_before_destroy = true
  }
}

resource "aws_route53_record" "main" {
  for_each = {
    for dvo in aws_acm_certificate.main.domain_validation_options : dvo.domain_name => {
      name   = dvo.resource_record_name
      record = dvo.resource_record_value
      type   = dvo.resource_record_type
    }
  }

  allow_overwrite = true
  name            = each.value.name
  records         = [each.value.record]
  ttl             = 60
  type            = each.value.type
  zone_id         = data.aws_route53_zone.main.zone_id
}

resource "aws_acm_certificate_validation" "main" {
  certificate_arn         = aws_acm_certificate.minecraft.arn
  validation_record_fqdns = [for record in aws_route53_record.main : record.fqdn]
  provider                = aws.virginia
}

参考

https://qiita.com/Toshinori_Hayashi/items/08bd5a12bc7d87d9ba18
https://qiita.com/tos-miyake/items/f0e5f28f2a69e4d39422

0
1
0

Register as a new user and use Qiita more conveniently

  1. You get articles that match your needs
  2. You can efficiently read back useful information
  3. You can use dark theme
What you can do with signing up
Sign upLogin
0
1