You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
<ahref="https://github.com/gruntwork-io/terraform-aws-load-balancer/tree/v0.29.18/modules/acm-tls-certificate"className="link-button"title="View the source code for this module in GitHub.">View Source</a>
16
+
<ahref="https://github.com/gruntwork-io/terraform-aws-load-balancer/tree/v0.29.19/modules/acm-tls-certificate"className="link-button"title="View the source code for this module in GitHub.">View Source</a>
17
17
18
-
<ahref="https://github.com/gruntwork-io/terraform-aws-load-balancer/releases/tag/v0.29.18"className="link-button"title="Release notes for only versions which impacted this module.">Release Notes</a>
18
+
<ahref="https://github.com/gruntwork-io/terraform-aws-load-balancer/releases/tag/v0.29.19"className="link-button"title="Release notes for only versions which impacted this module.">Release Notes</a>
19
19
20
20
This module can be used to issue and validate free, auto-renewing TLS certificates using [AWS Certificate
21
21
Manager (ACM)](https://aws.amazon.com/certificate-manager/). It supports issuing and validating multiple ACM certificates.
@@ -105,6 +105,33 @@ acm_tls_certificates = {
105
105
}
106
106
```
107
107
108
+
## Requesting a certificate for a subdomain with a subject alternative name that uses a unique hosted zone
109
+
110
+
If you are requesting a a certificate for a subdomain with a subject alternative name where both use a unique (and different) hosted zone that differes from the zone used by the parent/root domain, then you will need to specify a domain:zone mapping using the var `domain_hosted_zone_ids`.
111
+
112
+
Assume that you want a wildcard certificate created for '*.foo.acm-test.test-domain.in' with a subject alternative name of '*.bar.acm-test.test-domain.in.' In this example, the subdomain 'acm-test.test-domain.in' uses zone ID Z11111, the subdomain 'foo.acm-test.test-domain.in' uses zone ID Z12345 and the subdomain 'bar.acm-test.test-domain.in' uses zone ID Z67890. In order for certificate validation records to be created in the correct zone, a domain:zone mapping can be specified similar to the following example:
This will allow the validation records for 'foo.acm-test.test-domain.in' to be created in zone Z12345, and the validation records for 'bar.acm-test.test-domain.in' to be created in zone Z67890.
132
+
133
+
Make sure the domain string passed to the `domain_hosted_zone_ids` exactly matches the domain string(s) set in `acm_tls_certificates`.
134
+
108
135
## Certificate Renewal and Expiration
109
136
110
137
If you use this module to create a new certificate, it should automatically renew so long as the following criteria are met at least 60 days prior to expiration:
@@ -205,7 +232,7 @@ In this example, the `acm-tls-certificates` module will "wait" until your `aws_r
<ahref="https://github.com/gruntwork-io/terraform-aws-load-balancer/tree/v0.29.18/modules/alb"className="link-button"title="View the source code for this module in GitHub.">View Source</a>
16
+
<ahref="https://github.com/gruntwork-io/terraform-aws-load-balancer/tree/v0.29.19/modules/alb"className="link-button"title="View the source code for this module in GitHub.">View Source</a>
17
17
18
18
<ahref="https://github.com/gruntwork-io/terraform-aws-load-balancer/releases/tag/v0.29.17"className="link-button"title="Release notes for only versions which impacted this module.">Release Notes</a>
19
19
@@ -191,7 +191,7 @@ There are two ways for you to override this behavior:
<ahref="https://github.com/gruntwork-io/terraform-aws-load-balancer/tree/v0.29.18/modules/lb-listener-rules"className="link-button"title="View the source code for this module in GitHub.">View Source</a>
16
+
<ahref="https://github.com/gruntwork-io/terraform-aws-load-balancer/tree/v0.29.19/modules/lb-listener-rules"className="link-button"title="View the source code for this module in GitHub.">View Source</a>
17
17
18
18
<ahref="https://github.com/gruntwork-io/terraform-aws-load-balancer/releases/tag/v0.29.16"className="link-button"title="Release notes for only versions which impacted this module.">Release Notes</a>
19
19
@@ -95,7 +95,7 @@ Note that in most cases, your path definitions should be mutually exclusive and
<ahref="https://github.com/gruntwork-io/terraform-aws-load-balancer/tree/v0.29.18/modules/nlb"className="link-button"title="View the source code for this module in GitHub.">View Source</a>
16
+
<ahref="https://github.com/gruntwork-io/terraform-aws-load-balancer/tree/v0.29.19/modules/nlb"className="link-button"title="View the source code for this module in GitHub.">View Source</a>
17
17
18
18
<ahref="https://github.com/gruntwork-io/terraform-aws-load-balancer/releases/tag/v0.23.0"className="link-button"title="Release notes for only versions which impacted this module.">Release Notes</a>
19
19
@@ -29,11 +29,11 @@ For information on why the module was removed, refer to the discussion in [PR
![docs-sourcer[bot]](https://avatars.githubusercontent.com/u/17118990?v=4&size=40){kind=avatar}
0 commit comments