search

aptible / terraform-provider-aptible

The official Terraform provider for Aptible Deploy
https://registry.terraform.io/providers/aptible/aptible/latest
10 stars 13 forks source link

Managed HTTPS validation domain #38

Closed jeremiahbowen closed 3 years ago

jeremiahbowen commented 3 years ago

When creating an aptible endpoint, the aptible_endpoint resources doesn't have an attribute providing the _acme-challenge record that needs to be created to generate a new SSL certificate. This makes it impossible to terraform that DNS record and ensure that it isn't removed in the future (causing an outage when the certificate expires). Can you update the resource to provide the CNAME and acme host necessary to generate the certificate?

resource "aptible_endpoint" "endpoint_testing" {
    container_port = 8080
    default_domain = false
    domain         = "hrz-web-dashboard.domain.com"
    endpoint_id    = ####
    endpoint_type  = "https"
    env_id         = ####
    id             = "####"
    internal       = true
    managed        = true
    platform       = "alb"
    process_type   = "cmd"
    resource_id    = ####
    resource_type  = "app"
    virtual_domain = "hrz-web-dashboard.domain.com"
}
robertfairhead commented 3 years ago

Yes, I'll be adding that in the forthcoming PR as well per https://github.com/aptible/terraform-provider-aptible/issues/37

robertfairhead commented 3 years ago

Terraform provider v0.1.4 is released at https://registry.terraform.io/providers/aptible/aptible/latest and includes the change to address this.