Closed os11k closed 7 months ago
Seems route53:ListHostedZonesByName is not needed if we specify zoneID for ListResourceRecordSets. I got this idea from here:
route53:ListHostedZonesByName
ListResourceRecordSets
https://cert-manager.io/docs/configuration/acme/dns01/route53/#set-up-an-iam-role
And I tested today, and it does provides certificate without route53:ListHostedZonesByName.
Actually I tried now on my other AWS account and it doesn't work without route53:ListHostedZonesByName. In that case I had separate hosted zone for domain... I will close this now.
Seems
route53:ListHostedZonesByName
is not needed if we specify zoneID forListResourceRecordSets
. I got this idea from here:https://cert-manager.io/docs/configuration/acme/dns01/route53/#set-up-an-iam-role
And I tested today, and it does provides certificate without
route53:ListHostedZonesByName
.