Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Certificate Manager] DnsValidatedCertificate - Certificate Validation across multiple hosted-zones #8783

Closed
2 tasks
jamiepmullan opened this issue Jun 29, 2020 · 0 comments · Fixed by #8552
Closed
2 tasks

[Certificate Manager] DnsValidatedCertificate - Certificate Validation across multiple hosted-zones #8783

jamiepmullan opened this issue Jun 29, 2020 · 0 comments · Fixed by #8552
Assignees
@skinny85
Labels
@aws-cdk/aws-certificatemanager Related to Amazon Certificate Manager effort/small Small work item – less than a day of effort feature-request A feature should be added or improved. in-progress This issue is being actively worked on.

Comments

@jamiepmullan
Copy link
Contributor

We have a use case where we want to create a Certificate across multiple hosted zones:
i.e.

{ domainName: "example.com", subjectAlternativeNames: "example.co.uk", hostedZone: xxxx, }

Because we're specifying 1 hosted zone, we (obviously) get the error:
Failed to update resource. [RRSet with DNS name _xxxxx.example.co.uk. is not permitted in zone example.com.]

If we create the certificate in the Console, it automatically places the DNS validation in the correct hosted zone.

Use Case

We want to do this so we can have a single CF instance across both hosted zones, to reduce on cost/complexity to our infrastructure.

Proposed Solution

Other

  • 👋 I may be able to implement this feature request
  • ⚠️ This feature might incur a breaking change

This is a 🚀 Feature Request
@jamiepmullan jamiepmullan added feature-request A feature should be added or improved. needs-triage This issue or PR still needs to be triaged. labels Jun 29, 2020
@github-actions github-actions bot added the @aws-cdk/aws-certificatemanager Related to Amazon Certificate Manager label Jun 29, 2020
@jogold jogold mentioned this issue Jun 29, 2020
Merged
@skinny85 skinny85 added in-progress This issue is being actively worked on. effort/small Small work item – less than a day of effort and removed needs-triage This issue or PR still needs to be triaged. labels Jun 29, 2020
@mergify mergify bot closed this as completed in #8552 Jul 10, 2020
mergify bot pushed a commit that referenced this issue Jul 10, 2020
@jogold
feat(certificatemanager): native CloudFormation DNS validated certifi…
337279f 
…cate (#8552)

Automatically adding Amazon Route 53 CNAME records for DNS validation is
now natively supported by CloudFormation.

Add a `validation` prop to `Certificate` to handle both email and DNS
validation. `DnsValidatedCertificate` is now only useful for cross-region
certificate creation.

The default remains email validation (non-breaking).

Closes #5831
Closes #5835
Closes #6081
Closes #6516
Closes #7150
Closes #7941
Closes #7995
Closes #7996
Closes #8282 
Closes #8659
Closes #8783

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@skinny85 skinny85

Labels
@aws-cdk/aws-certificatemanager Related to Amazon Certificate Manager effort/small Small work item – less than a day of effort feature-request A feature should be added or improved. in-progress This issue is being actively worked on.
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

feat(certificatemanager): native CloudFormation DNS validated certificate jogold/aws-cdk
2 participants
@skinny85 @jamiepmullan