Update AWS cert to wildcard (#4199)

Author: marcoacierno

infrastructure/applications/cluster/cloudfront.tf

@@ -12,7 +12,7 @@ data "aws_cloudfront_cache_policy" "caching_disabled" {
 }
 
 data "aws_acm_certificate" "cert" {
-  domain   = "*.pycon.it"
+  domain   = "pycon.it"
   statuses = ["ISSUED"]
   provider = aws.us
 }

infrastructure/applications/pycon_backend/main.tf

@@ -37,7 +37,7 @@ data "aws_db_instance" "database" {
 }
 
 data "aws_acm_certificate" "cert" {
-  domain   = "*.pycon.it"
+  domain   = "pycon.it"
   statuses = ["ISSUED"]
   provider = aws.us
 }

infrastructure/global/certs/pyconit_certs.tf

@@ -3,8 +3,8 @@ data "aws_route53_zone" "pyconit_domain" {
 }
 
 resource "aws_acm_certificate" "pyconit_cert" {
-  domain_name               = "*.pycon.it"
-  subject_alternative_names = []
+  domain_name               = "pycon.it"
+  subject_alternative_names = ["*.pycon.it"]
   validation_method         = "DNS"
   provider                  = aws.us
 
@@ -19,7 +19,7 @@ resource "aws_route53_record" "pyconit_validation" {
       name   = dvo.resource_record_name
       record = dvo.resource_record_value
       type   = dvo.resource_record_type
-    }
+    } if length(regexall("\\*\\..+", dvo.domain_name)) > 0
   }
 
   name    = each.value.name

infrastructure/global/ecr_repos/main.tf

@@ -1,6 +1,7 @@
 locals {
   services = [
     "pycon-backend",
+    "pycon-frontend",
     "pretix"
   ]
 }