Changed file names, added name as output

Lupus-Metallum · Apr 21, 2021 · 367ea64 · 367ea64
1 parent b1938f4
commit 367ea64
Show file tree

Hide file tree

Showing 3 changed files with 34 additions and 25 deletions.
diff --git a/kms.tf → main.tf b/kms.tf → main.tf
@@ -1,3 +1,32 @@
+resource "aws_route53_zone" "this" {
+  name = var.domain_name
+}
+
+resource "aws_route53_key_signing_key" "this" {
+  count                      = var.dnssec == true ? 1 : 0
+  hosted_zone_id             = aws_route53_zone.this.id
+  key_management_service_arn = aws_kms_key.this[0].arn
+  name                       = var.signing_key_name
+}
+
+resource "aws_route53_hosted_zone_dnssec" "this" {
+  count          = var.dnssec == true ? 1 : 0
+  hosted_zone_id = aws_route53_key_signing_key.this[0].hosted_zone_id
+}
+
+resource "aws_route53_record" "this" {
+  count   = var.dnssec == true ? 1 : 0
+  zone_id = aws_route53_zone.this.zone_id
+  name    = "@.${aws_route53_zone.this.name}"
+  type    = "DS"
+  ttl     = var.ttl
+
+  records = [aws_route53_key_signing_key.this[0].ds_record]
+}
+
+#######
+# KMS
+#######
 resource "aws_kms_key" "this" {
   count                    = var.dnssec == true ? 1 : 0
   description              = "Used to sign dnssec records"

diff --git a/outputs.tf b/outputs.tf
@@ -1,6 +1,11 @@
 output "zone_id" {
   value = aws_route53_zone.this.zone_id
 }
+
 output "name_servers" {
   value = aws_route53_zone.this.name_servers
+}
+
+output "name" {
+  value = aws_route53_zone.this.name
 }
diff --git a/r53.tf b/r53.tf