./HAVOC Route53 Resources
Details about AWS Route53 resources created in a ./HAVOC deployment
When creating a new ./HAVOC deployment, several Route53 resources may be created in your AWS account if you include a custom domain name in the deployment options. Below is a list of the Route53 resources that are created.
The Terraform configuration file that is used to create the Route53 resources is available here: https://github.com/havocsh/havoc/blob/main/havoc_deploy/aws/terraform/route53.tf
DNS Record for ACM Certificate Validation
This resource is used to create a DNS record to validate an ACM certificate, which is required when enabling a custom domain for the ./HAVOC API Gateway.
ACM Certificate Validation Record
- Name:
${tolist(aws_acm_certificate.api_gateway_cert[count.index].domain_validation_options)[0].resource_record_name}
- Type:
${tolist(aws_acm_certificate.api_gateway_cert[count.index].domain_validation_options)[0].resource_record_type}
- TTL:
60 seconds
- Zone ID:
${var.hosted_zone}
- Allow Overwrite:
true
(Allows overwriting existing records)
This DNS record is created to validate the ACM certificate used for the ./HAVOC API Gateway when a custom domain is enabled.
DNS Record for Deployment API
This resource is used to create a DNS record that maps the deployment's API endpoint to a custom domain name.
Deployment API Record
- Name:
${var.deployment_name}-api.${var.domain_name}
- Type:
A
(IPv4 Address) - Zone ID:
${var.hosted_zone}
This DNS record is created to map the deployment's API endpoint (in the format ${var.deployment_name}-api.${var.domain_name}
) to the custom domain. It uses an alias to point to the regional domain name of the API Gateway.
These Route 53 DNS records are crucial for configuring custom domain settings and ensuring proper domain validation for the ./HAVOC deployment.
Updated about 1 year ago