~/codewithstu

// open_source

AWS Hosted Domain

OpenTofu module for provisioning AWS Route53 hosted zones with DNSSEC, query logging, multiple DNS record types, and subdomain delegation support

View on GitHub

Overview

This module creates AWS Route53 hosted zones with DNSSEC, query logging, and DNS records. Supports A, CNAME, TXT, MX, CAA, and alias records with optional subdomain delegation.

Key Features

  • Route53 hosted zone creation with DNSSEC support
  • Query logging to CloudWatch Logs with configurable retention
  • Multiple DNS record types: A, CNAME, TXT, MX, CAA, and A alias
  • Alias record support for AWS resources (ALB, CloudFront, etc.)
  • Subdomain delegation via parent zone NS/DS records
  • Configurable record overwrite permissions for migration scenarios

Usage

module "hosted_domain" {
  source = "git::https://github.com/Im5tu/opentofu-aws-hosted-domain.git?ref=main"
 
  domain_name = "example.com"
 
  providers = {
    aws        = aws
    aws.global = aws.us-east-1
  }
}