-
Notifications
You must be signed in to change notification settings - Fork 4.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
WIP: New Resource "azurerm_app_service_managed_certificate" #5092
Conversation
@tiwood does the hostname have to already be setup as a custom domain binding for the app service? If so, then the https://www.terraform.io/docs/providers/azurerm/r/app_service_custom_hostname_binding.html would need to be split to having the cert for a binding be it's own resource as the chain would need to be setup custom domain binding -> generate managed certificate -> bind managed certificate to custom domain binding but if you can generate the managed cert with a hostname not already bound as a custom domain then probably fine. I bring this up cause the GUI is certainly limited to picking from bound custom domains |
@drdamour This would indicate that the custom hostname binding does not need to be split: Looks like the order is:
@tiwood Would certainly love to get this finished up - we are currently blocked in this... |
Hi @tiwood |
@jackofallops Not sure if this is relevant to your point or not, just mentioning it just in case: I managed to figure out a way to create these certificates using template deployment. The necessary steps are:
Steps 4 and 5 are, in my case, done in an ARM template deployment resource. So, I think for practical purposes, a new resource type for this should maybe include both steps 4 and 5, which makes me think maybe it's different enough from |
@DaRosenberg |
@jackofallops Not sure what the technical definition of a circular dependency is in Terraform. I use the Terraform Azure Provider only through Pulumi. But from my point of view, it's not so much a circular dependency, as it is a need to refer to the same resource twice (once to create it, once more to update it). |
The circular is what i was worried about in #5092 (comment) i think we need a new resource that binds a cert to a hostname binding |
👋 hey @tiwood Since this PR's still blocked on the upstream issue in the Azure SDK - rather than leaving this open until that's fixed, I'm going to temporarily close this PR for the moment. As this issue is already assigned to the "Blocked" milestone, once the upstream issue is fixed we'll re-open this and take another look - apologies for the delay here! Thanks! |
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. If you feel I made an error 🤖 🙉 , please reach out to my human friends 👉 [email protected]. Thanks! |
WIP: New Resource "azurerm_app_service_managed_certificate"
Related issues
This closes #4824
TODO
azure-sdk-for-go
version with above fix has to be "vendored"