CCM-11586: domain name lifecycles

masl2 · masl2 · commit 94e1215e5d5a · 2025-08-19T11:57:46.000+01:00
diff --git a/infrastructure/terraform/components/api/api_gateway_domain.tf b/infrastructure/terraform/components/api/api_gateway_domain.tf
@@ -1,5 +1,4 @@
 resource "aws_api_gateway_domain_name" "main" {
-  count                    = var.manually_configure_mtls_truststore ? 1 :  0
   regional_certificate_arn = aws_acm_certificate_validation.main.certificate_arn
   domain_name              = local.root_domain_name
   security_policy          = "TLS_1_2"
@@ -18,28 +17,26 @@ resource "aws_api_gateway_domain_name" "main" {
   }
 
   lifecycle {
-    ignore_changes = [
-      mutual_tls_authentication
-    ]
+    ignore_changes = var.manually_configure_mtls_truststore ? [mutual_tls_authentication] :  []
   }
 }
 
-resource "aws_api_gateway_domain_name" "main_nonprod" {
-  count                    = var.manually_configure_mtls_truststore ? 1 :  0
-  regional_certificate_arn = aws_acm_certificate_validation.main.certificate_arn
-  domain_name              = local.root_domain_name
-  security_policy          = "TLS_1_2"
-
-  endpoint_configuration {
-    types = ["REGIONAL"]
-  }
-
-  depends_on = [
-    aws_s3_bucket.truststore
-  ]
-
-  mutual_tls_authentication {
-      truststore_uri     = "s3://${aws_s3_bucket.truststore.id}/${aws_s3_object.placeholder_truststore_nonprod[0].id}"
-      truststore_version = aws_s3_object.placeholder_truststore_nonprod[0].version_id
-  }
-}
+# resource "aws_api_gateway_domain_name" "main_nonprod" {
+#   count                    = var.manually_configure_mtls_truststore ? 1 :  0
+#   regional_certificate_arn = aws_acm_certificate_validation.main.certificate_arn
+#   domain_name              = local.root_domain_name
+#   security_policy          = "TLS_1_2"
+
+#   endpoint_configuration {
+#     types = ["REGIONAL"]
+#   }
+
+#   depends_on = [
+#     aws_s3_bucket.truststore
+#   ]
+
+#   mutual_tls_authentication {
+#       truststore_uri     = "s3://${aws_s3_bucket.truststore.id}/${aws_s3_object.placeholder_truststore_nonprod[0].id}"
+#       truststore_version = aws_s3_object.placeholder_truststore_nonprod[0].version_id
+#   }
+# }
