dns.tf

locals {
  domain_parts  = split(".", var.domain_name)
  parent_domain = join(".", slice(local.domain_parts, 1, length(local.domain_parts)))
}

module "zone" {
  source              = "git::https://github.com/goci-io/aws-route53-zone.git?ref=tags/0.6.0"
  namespace           = var.namespace
  stage               = var.stage
  attributes          = [var.region]
  domain_name         = var.domain_name
  parent_domain_name  = local.parent_domain
  certificate_enabled = false
  force_destroy       = true
}

module "external_dns" {
  source                = "git::https://github.com/goci-io/aws-external-cluster-dns.git?ref=tags/0.4.1"
  namespace             = var.namespace
  stage                 = var.stage
  region                = var.region
  name                  = var.name
  k8s_namespace         = var.k8s_namespace
  cluster_fqdn          = module.zone.domain_name
  domains               = [module.zone.domain_name]
  aws_region            = var.aws_region
  create_iam_role       = false
  configure_kiam        = true
  namespace_scoped      = true
  iam_role_arn          = var.iam_role_arn
  iam_attach_policy     = var.iam_attach_policy
  iam_role_external_id  = var.iam_role_external_id
  iam_role_trusted_arns = var.iam_role_trusted_arn == "" ? [] : [var.iam_role_trusted_arn]
}