[New Data Source]: `aws_acm_certificates`

[mss]

Description

A data source aws_acm_certificates (plural) would be useful for looking up the ARNs of multiple (potentially optional) certificates for SNI based selection and/or deploying both RSA and ECDSA certificates to an ALB.

Requested Resource(s) and/or Data Source(s)

• aws_acm_certificates

Potential Terraform Configuration

data "aws_acm_certificate" "primary" {
  domain   = var.primary_domain
  statuses = ["ISSUED"]
}

data "aws_acm_certificates" "aliases" {
  for_each = toset(var.alias_domains)

  domain    = each.key
  statuses  = ["ISSUED"]
  key_types = ["RSA_2048", "EC_prime256v1"]
}

resource "aws_lb_listener" "this" {
  load_balancer_arn = aws_lb.this.arn
  port              = "443"
  protocol          = "HTTPS"
  certificate_arn   = data.aws_acm_certificate.primary.arn

  ...
}

resource "aws_lb_listener_certificate" "this" {
  for_each = data.aws_acm_certificates

  listener_arn    = aws_lb_listener.this.arn
  certificate_arn = each.value.arn
}

References

• https://docs.aws.amazon.com/cli/latest/reference/ec2/describe-images.html

• 27715

Would you like to implement a fix?

No

[github-actions[bot]]

Community Note

Voting for Prioritization

• Please vote on this issue by adding a 👍 reaction to the original post to help the community and maintainers prioritize this request.
• Please see our prioritization guide for information on how we prioritize.
• Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request.

Volunteering to Work on This Issue

• If you are interested in working on this issue, please leave a comment.
• If this would be your first contribution, please review the contribution guide.