Fixing validation records when wildcard is present with alternative domains (#32)

mmiranda · antonbabenko · commit 43a87c2c9cd6 · 2019-12-19T17:40:32.000+01:00
diff --git a/main.tf b/main.tf
@@ -3,7 +3,7 @@ locals {
   distinct_domain_names = distinct(concat([var.domain_name], [for s in var.subject_alternative_names : replace(s, "*.", "")]))
 
   // Copy domain_validation_options for the distinct domain names
-  validation_domains = var.create_certificate ? [for k, v in aws_acm_certificate.this[0].domain_validation_options : tomap(v) if contains(local.distinct_domain_names, v.domain_name)] : []
+  validation_domains = var.create_certificate ? [for k, v in aws_acm_certificate.this[0].domain_validation_options : tomap(v) if contains(local.distinct_domain_names, replace(v.domain_name, "*.", ""))] : []
 }
 
 resource "aws_acm_certificate" "this" {
@@ -21,7 +21,7 @@ resource "aws_acm_certificate" "this" {
 }
 
 resource "aws_route53_record" "validation" {
-  count = var.create_certificate && var.validation_method == "DNS" && var.validate_certificate ? length(local.distinct_domain_names) : 0
+  count = var.create_certificate && var.validation_method == "DNS" && var.validate_certificate ? length(local.distinct_domain_names)+1 : 0
 
   zone_id = var.zone_id
   name    = element(local.validation_domains, count.index)["resource_record_name"]

Original file line number	Diff line number	Diff line change
`@@ -3,7 +3,7 @@ locals {`
`3`	`3`	`distinct_domain_names = distinct(concat([var.domain_name], [for s in var.subject_alternative_names : replace(s, "*.", "")]))`
`4`	`4`
`5`	`5`	`// Copy domain_validation_options for the distinct domain names`
`6`		`- validation_domains = var.create_certificate ? [for k, v in aws_acm_certificate.this[0].domain_validation_options : tomap(v) if contains(local.distinct_domain_names, v.domain_name)] : []`
	`6`	`+ validation_domains = var.create_certificate ? [for k, v in aws_acm_certificate.this[0].domain_validation_options : tomap(v) if contains(local.distinct_domain_names, replace(v.domain_name, "*.", ""))] : []`
`7`	`7`	`}`
`8`	`8`
`9`	`9`	`resource "aws_acm_certificate" "this" {`
`@@ -21,7 +21,7 @@ resource "aws_acm_certificate" "this" {`
`21`	`21`	`}`
`22`	`22`
`23`	`23`	`resource "aws_route53_record" "validation" {`
`24`		`- count = var.create_certificate && var.validation_method == "DNS" && var.validate_certificate ? length(local.distinct_domain_names) : 0`
	`24`	`+ count = var.create_certificate && var.validation_method == "DNS" && var.validate_certificate ? length(local.distinct_domain_names)+1 : 0`
`25`	`25`
`26`	`26`	`zone_id = var.zone_id`
`27`	`27`	`name = element(local.validation_domains, count.index)["resource_record_name"]`