Security News
Cloudflare Adds Security.txt Setup Wizard
Cloudflare has launched a setup wizard allowing users to easily create and manage a security.txt file for vulnerability disclosure on their websites.
@aws-cdk/aws-route53-targets
Advanced tools
This library contains Route53 Alias Record targets for:
API Gateway custom domains
import * as apigw from '@aws-cdk/aws-apigateway';
declare const zone: route53.HostedZone;
declare const restApi: apigw.LambdaRestApi;
new route53.ARecord(this, 'AliasRecord', {
zone,
target: route53.RecordTarget.fromAlias(new targets.ApiGateway(restApi)),
// or - route53.RecordTarget.fromAlias(new alias.ApiGatewayDomain(domainName)),
});
API Gateway V2 custom domains
import * as apigwv2 from '@aws-cdk/aws-apigatewayv2';
declare const zone: route53.HostedZone;
declare const domainName: apigwv2.DomainName;
new route53.ARecord(this, 'AliasRecord', {
zone,
target: route53.RecordTarget.fromAlias(new targets.ApiGatewayv2DomainProperties(domainName.regionalDomainName, domainName.regionalHostedZoneId)),
});
CloudFront distributions
import * as cloudfront from '@aws-cdk/aws-cloudfront';
declare const zone: route53.HostedZone;
declare const distribution: cloudfront.CloudFrontWebDistribution;
new route53.ARecord(this, 'AliasRecord', {
zone,
target: route53.RecordTarget.fromAlias(new targets.CloudFrontTarget(distribution)),
});
ELBv2 load balancers
import * as elbv2 from '@aws-cdk/aws-elasticloadbalancingv2';
declare const zone: route53.HostedZone;
declare const lb: elbv2.ApplicationLoadBalancer;
new route53.ARecord(this, 'AliasRecord', {
zone,
target: route53.RecordTarget.fromAlias(new targets.LoadBalancerTarget(lb)),
// or - route53.RecordTarget.fromAlias(new targets.ApiGatewayDomain(domainName)),
});
Classic load balancers
import * as elb from '@aws-cdk/aws-elasticloadbalancing';
declare const zone: route53.HostedZone;
declare const lb: elb.LoadBalancer;
new route53.ARecord(this, 'AliasRecord', {
zone,
target: route53.RecordTarget.fromAlias(new targets.ClassicLoadBalancerTarget(lb)),
// or - route53.RecordTarget.fromAlias(new alias.ApiGatewayDomain(domainName)),
});
Important: Based on AWS documentation, all alias record in Route 53 that points to a Elastic Load Balancer will always include dualstack for the DNSName to resolve IPv4/IPv6 addresses (without dualstack IPv6 will not resolve).
For example, if the Amazon-provided DNS for the load balancer is ALB-xxxxxxx.us-west-2.elb.amazonaws.com
, CDK will create alias target in Route 53 will be dualstack.ALB-xxxxxxx.us-west-2.elb.amazonaws.com
.
GlobalAccelerator
import * as globalaccelerator from '@aws-cdk/aws-globalaccelerator';
declare const zone: route53.HostedZone;
declare const accelerator: globalaccelerator.Accelerator;
new route53.ARecord(this, 'AliasRecord', {
zone,
target: route53.RecordTarget.fromAlias(new targets.GlobalAcceleratorTarget(accelerator)),
// or - route53.RecordTarget.fromAlias(new targets.GlobalAcceleratorDomainTarget('xyz.awsglobalaccelerator.com')),
});
Important: If you use GlobalAcceleratorDomainTarget, passing a string rather than an instance of IAccelerator, ensure that the string is a valid domain name of an existing Global Accelerator instance. See the documentation on DNS addressing with Global Accelerator for more info.
Important: Based on the CFN docs for VPCEndpoints - see here - the attributes returned for DnsEntries in CloudFormation is a combination of the hosted zone ID and the DNS name. The entries are ordered as follows: regional public DNS, zonal public DNS, private DNS, and wildcard DNS. This order is not enforced for AWS Marketplace services, and therefore this CDK construct is ONLY guaranteed to work with non-marketplace services.
import * as ec2 from '@aws-cdk/aws-ec2';
declare const zone: route53.HostedZone;
declare const interfaceVpcEndpoint: ec2.InterfaceVpcEndpoint;
new route53.ARecord(this, "AliasRecord", {
zone,
target: route53.RecordTarget.fromAlias(new targets.InterfaceVpcEndpointTarget(interfaceVpcEndpoint)),
});
Important: The Bucket name must strictly match the full DNS name. See the Developer Guide for more info.
import * as s3 from '@aws-cdk/aws-s3';
const recordName = 'www';
const domainName = 'example.com';
const bucketWebsite = new s3.Bucket(this, 'BucketWebsite', {
bucketName: [recordName, domainName].join('.'), // www.example.com
publicReadAccess: true,
websiteIndexDocument: 'index.html',
});
const zone = route53.HostedZone.fromLookup(this, 'Zone', {domainName}); // example.com
new route53.ARecord(this, 'AliasRecord', {
zone,
recordName, // www
target: route53.RecordTarget.fromAlias(new targets.BucketWebsiteTarget(bucketWebsite)),
});
User pool domain
import * as cognito from '@aws-cdk/aws-cognito';
declare const zone: route53.HostedZone;
declare const domain: cognito.UserPoolDomain;
new route53.ARecord(this, 'AliasRecord', {
zone,
target: route53.RecordTarget.fromAlias(new targets.UserPoolDomainTarget(domain)),
});
Route 53 record
declare const zone: route53.HostedZone;
declare const record: route53.ARecord;
new route53.ARecord(this, 'AliasRecord', {
zone,
target: route53.RecordTarget.fromAlias(new targets.Route53RecordTarget(record)),
});
Elastic Beanstalk environment:
Important: Only supports Elastic Beanstalk environments created after 2016 that have a regional endpoint.
declare const zone: route53.HostedZone;
declare const ebsEnvironmentUrl: string;
new route53.ARecord(this, 'AliasRecord', {
zone,
target: route53.RecordTarget.fromAlias(new targets.ElasticBeanstalkEnvironmentEndpointTarget(ebsEnvironmentUrl)),
});
See the documentation of @aws-cdk/aws-route53
for more information.
1.149.0 (2022-03-17)
hasNoXXX
methods. (#19330) (6bdc9eb), closes #18874FAQs
The CDK Construct Library for AWS Route53 Alias Targets
The npm package @aws-cdk/aws-route53-targets receives a total of 39,170 weekly downloads. As such, @aws-cdk/aws-route53-targets popularity was classified as popular.
We found that @aws-cdk/aws-route53-targets demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 4 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Cloudflare has launched a setup wizard allowing users to easily create and manage a security.txt file for vulnerability disclosure on their websites.
Security News
The Socket Research team breaks down a malicious npm package targeting the legitimate DOMPurify library. It uses obfuscated code to hide that it is exfiltrating browser and crypto wallet data.
Security News
ENISA’s 2024 report highlights the EU’s top cybersecurity threats, including rising DDoS attacks, ransomware, supply chain vulnerabilities, and weaponized AI.