https://kotlinlang.org logo
Join Slack
Powered by
Trying to configure Route53 with the following: `r...
# kotless
p
Trying to configure Route53 with the following: 
route53 = Route53(alias="", zone="<http://mydoama.org|mydoama.org>", certificate="_<http://e491cf4eb0d63b4d22903af02782d761.mydoama.org|e491cf4eb0d63b4d22903af02782d761.mydoama.org>")
but get the following error:
Copy code
Error: No certificate for domain "<http://_e491cf4eb0d63b4d22903af02782d761.mydoama.org|_e491cf4eb0d63b4d22903af02782d761.mydoama.org>" found in this region
  on <http://kotless-test.tf|kotless-test.tf> line 141, in data "aws_acm_certificate" "e491cf4eb0d63b4d22903af02782d761_mydoama_org":
 141: data "aws_acm_certificate" "e491cf4eb0d63b4d22903af02782d761_mydoama_org" {
I have set up a certificate for us-east-1 (N. Virginia), so I just don't know what is wrong. I am a bit confused what the parameters to Route53 should be. I do not have an alias, and should zone be my domain? Does not sound like a "zone"? Using kotless 0.1.6
t
In your case alias == _`e491cf4eb0d63b4d22903af02782d761`
1. You should not configure Route 53 by yourself, you need only DNS zone configured 2. yes 3. no, it can be any S3 bucket 4. no 5. Hm, probably not 🙂
👍 1
p
This drives me crazy. What is possibly wrong with my certificate?
Copy code
data "aws_acm_certificate" "e491cf4eb0d63b4d22903af02782d761_mydoama_org" {
  provider = aws.us_east_1
  domain = "<http://_e491cf4eb0d63b4d22903af02782d761.mydoama.org|_e491cf4eb0d63b4d22903af02782d761.mydoama.org>"
  statuses = ["ISSUED"]
}
t
Hmmm, actually you certificate is *.waperon.org
Not _e491....., that is the name of verification record of certificate
Just use 
*.<http://waperon.org|waperon.org>
p
didn't work, either. I've tried a lot of name-combinations for the certificate, with no luck.
Copy code
Error: Missing newline after argument
  on <http://kotless-test.tf|kotless-test.tf> line 34, in resource "aws_api_gateway_domain_name" "kotless_test":
  34:   certificate_arn = data.aws_acm_certificate.*_mydoama_org.arn
t
This actually a bug. Kotless does not support wildcard names right now. Try to create certificate for a specific site (like “site.waperon.org”)
p
yes, thank you, that worked! Now I'm onto to next errors. It seems like I manually have to delete to domain name from the API Gateway, but manually deleting the merged-0 role does not seem to have any effect
Copy code
Error: Error creating API Gateway Domain Name: BadRequestException: The domain name you provided already exists.

  on <http://kotless-test.tf|kotless-test.tf> line 32, in resource "aws_api_gateway_domain_name" "kotless_test":
  32: resource "aws_api_gateway_domain_name" "kotless_test" {
Error: Error creating IAM Role kotless-static-role: EntityAlreadyExists: Role with name kotless-static-role already exists.
        status code: 409, request id: 335cbb65-bc08-4750-8e6b-4b4a6bf7a84f

  on <http://kotless-test.tf|kotless-test.tf> line 95, in resource "aws_iam_role" "kotless_static_role":
  95: resource "aws_iam_role" "kotless_static_role" {

Error: Error creating IAM Role merged-0: EntityAlreadyExists: Role with name merged-0 already exists.
        status code: 409, request id: e46f90af-1671-4472-8bcd-7c744980a0f9

  on <http://kotless-test.tf|kotless-test.tf> line 100, in resource "aws_iam_role" "merged_0":
 100: resource "aws_iam_role" "merged_0" {
Got rid of all errors after manually deleting resources from AWS. Things seem to work 🙂 Thanks for all the help!
t
Yay! Have a nice Kotless)
👍 1
9 Views
Open in Slack
PreviousNext
Powered by