-
Notifications
You must be signed in to change notification settings - Fork 9.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update aws_acm_certificate to add custom domain for email verification #4662
Conversation
@bflad Wondering when/if this will be merged anytime soon. Just curious if there are any changes that need to be made that are preventing you guys from wanting to merge this or if you've just been too busy else where. Nice work on getting EKS out on day 0 BTW. |
Sorry I have not personally had time to give a code review here. At quick glance it seems like we should handle this within the domain validation options so it can handle customizing it for each domain rather than introduce a singular argument which would most likely need to be deprecated in the future. Turns out there's a previous pull request in this regard: #3853 -- I had some initial PR feedback there since it broke backwards compatibility, but maybe its worth working the original author there, providing feedback, or providing fixes on top of their commits? I'm not sure when I'll personally be able to circle back around to this topic though. |
Hi @jw-maynard 👋 Thank you again for submitting this. Circling back, we are preferring to focus our efforts on the previous #3853 as part of our spiked effort against the |
@bflad No problem. We very quickly switched to domain validation after this PR and so I never got around to trying to fix it up. Good luck on version 3.0! |
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. Thanks! |
Fixes #3851
Changes proposed in this pull request:
The code currently uses the same domain for the base domain name and all SANs on the certificate. This is probably the most common use case and avoids having to muck around in the existing domain_validation_options. I realize this breaks with the structure of the AWS API but I don't have an immediate need for the added complexity.
Output from acceptance testing: