StackExchange/dnscontrol
1
1
Fork 0
mirror of https://github.com/StackExchange/dnscontrol.git synced 2024-11-15 20:55:34 +08:00
Code Issues Projects Releases Packages Wiki Activity
dnscontrol/docs/_providers/route53.md
Patrick G 31bdb65720 Improved consistency of provider documentation (#222) 
- Fixed indentation
- Use same naming scheme for all examples
  (i.e. all caps for provider, REG prefix for registrar)
- Use REG_NONE as registrar when provider does not provide it
- Use example.tld for example domain
- Use 1.2.3.1/24 IP range for examples
- A few spelling fixes
2017-10-11 08:33:52 -04:00

2 KiB
Raw Blame History

name layout jsId
Route 53 default ROUTE53

Amazon Route 53 Provider

Configuration

By default, you can configure aws setting like the go sdk configuration. For example you can use environment variables:

$ export AWS_ACCESS_KEY_ID=XXXXXXXXX
$ export AWS_SECRET_ACCESS_KEY=YYYYYYYYY

It is also possible to specify an aws access key in the providers config json file:

{% highlight json %} { "r53":{ "KeyId": "your-aws-key", "SecretKey": "your-aws-secret-key" } } {% endhighlight %}

Metadata

This provider does not recognize any special metadata fields unique to route 53.

Usage

Example javascript:

{% highlight js %} var REG_NONE = NewRegistrar("none","NONE"); var R53 = NewDnsProvider("r53", "ROUTE53");

D("example.tld", REG_NONE, DnsProvider(R53), A("test","1.2.3.4") ); {%endhighlight%}

Activation

DNSControl depends on a standard aws access key with permission to list, create and update hosted zones.

New domains

If a domain does not exist in your Route53 account, DNSControl will not automatically add it. You can do that either manually via the control panel, or via the command dnscontrol create-domains command.

Caveats

This code may not function properly if a domain has R53 as a Registrar but not as a DnsProvider. The situation is described in PR#155.

In this situation you will see a message like:

----- Registrar: r53
Error getting corrections: AccessDeniedException: User: arn:aws:iam::868399730840:user/dnscontrol is not authorized to perform: route53domains:GetDomainDetail
  status code: 400, request id: 48b534a1-7902-11e7-afa6-a3fffd2ce139
Done. 1 corrections.

If this happens to you, we'd appreciate it if you could helps us fix the code. In the meanwhile, you can give the account additional IAM permissions so that it can do DNS-related actions, or simply use NewRegistrar(..., 'NONE') for now.