fix: add us-east-1 as provider for certificate and certificate validation

burib · burib · commit 6a249d210849 · 2025-05-09T15:08:10.000+02:00
diff --git a/main.tf b/main.tf
@@ -10,13 +10,16 @@ resource "aws_acm_certificate" "wildcard_cert" {
   subject_alternative_names = [
     "*.${aws_route53_zone.this.name}"
   ]
+
+  provider = aws.us_east_1 # ACM certificates must be created in us-east-1 for CloudFront
 }
 
 resource "aws_acm_certificate_validation" "wildcard_cert" {
   certificate_arn = aws_acm_certificate.wildcard_cert.arn
   validation_record_fqdns = [
     aws_route53_record.wildcard_cert_validation.fqdn
   ]
+  provider = aws.us_east_1
 }
 
 resource "aws_route53_record" "wildcard_cert_validation" {
@@ -34,11 +37,13 @@ resource "aws_ssm_parameter" "hosted_zone_id" {
   value       = aws_route53_zone.this.zone_id
   description = "Route53 Hosted Zone ID for ${aws_route53_zone.this.name}"
   type        = "String"
+  overwrite   = true
 }
 
 resource "aws_ssm_parameter" "wildcard_cert_arn" {
   name        = "/certificates/${replace(aws_route53_zone.this.name, ".", "-DOT-")}/wildcard/arn"
   value       = aws_acm_certificate.wildcard_cert.arn
   description = "Wildcard Certificate ARN of *.${aws_route53_zone.this.name}"
   type        = "String"
+  overwrite   = true
 }
diff --git a/providers.tf b/providers.tf
@@ -3,8 +3,9 @@ terraform {
 
   required_providers {
     aws = {
-      source  = "hashicorp/aws"
-      version = ">= 5.0" # minimum 5.x is required to be able to use this module
+      source                = "hashicorp/aws"
+      version               = ">= 5.0" # minimum 5.x is required to be able to use this module
+      configuration_aliases = [aws.us_east_1]
     }
   }
 }

Original file line number	Diff line number	Diff line change
`@@ -10,13 +10,16 @@ resource "aws_acm_certificate" "wildcard_cert" {`
`10`	`10`	`subject_alternative_names = [`
`11`	`11`	`"*.${aws_route53_zone.this.name}"`
`12`	`12`	`]`
	`13`	`+`
	`14`	`+ provider = aws.us_east_1 # ACM certificates must be created in us-east-1 for CloudFront`
`13`	`15`	`}`
`14`	`16`
`15`	`17`	`resource "aws_acm_certificate_validation" "wildcard_cert" {`
`16`	`18`	`certificate_arn = aws_acm_certificate.wildcard_cert.arn`
`17`	`19`	`validation_record_fqdns = [`
`18`	`20`	`aws_route53_record.wildcard_cert_validation.fqdn`
`19`	`21`	`]`
	`22`	`+ provider = aws.us_east_1`
`20`	`23`	`}`
`21`	`24`
`22`	`25`	`resource "aws_route53_record" "wildcard_cert_validation" {`
`@@ -34,11 +37,13 @@ resource "aws_ssm_parameter" "hosted_zone_id" {`
`34`	`37`	`value = aws_route53_zone.this.zone_id`
`35`	`38`	`description = "Route53 Hosted Zone ID for ${aws_route53_zone.this.name}"`
`36`	`39`	`type = "String"`
	`40`	`+ overwrite = true`
`37`	`41`	`}`
`38`	`42`
`39`	`43`	`resource "aws_ssm_parameter" "wildcard_cert_arn" {`
`40`	`44`	`name = "/certificates/${replace(aws_route53_zone.this.name, ".", "-DOT-")}/wildcard/arn"`
`41`	`45`	`value = aws_acm_certificate.wildcard_cert.arn`
`42`	`46`	`description = "Wildcard Certificate ARN of *.${aws_route53_zone.this.name}"`
`43`	`47`	`type = "String"`
	`48`	`+ overwrite = true`
`44`	`49`	`}`
Original file line number	Diff line number	Diff line change
`@@ -3,8 +3,9 @@ terraform {`
`3`	`3`
`4`	`4`	`required_providers {`
`5`	`5`	`aws = {`
`6`		`- source = "hashicorp/aws"`
`7`		`- version = ">= 5.0" # minimum 5.x is required to be able to use this module`
	`6`	`+ source = "hashicorp/aws"`
	`7`	`+ version = ">= 5.0" # minimum 5.x is required to be able to use this module`
	`8`	`+ configuration_aliases = [aws.us_east_1]`
`8`	`9`	`}`
`9`	`10`	`}`
`10`	`11`	`}`