Package software.amazon.awscdk.services.route53

Interface PublicHostedZoneProps

All Superinterfaces:
CommonHostedZoneProps, software.amazon.jsii.JsiiSerializable
All Known Implementing Classes:
PublicHostedZoneProps.Jsii$Proxy
@Generated(value="jsii-pacmak/1.120.0 (build 192dc88)", date="2025-12-05T22:26:44.294Z") @Stability(Stable) public interface PublicHostedZoneProps extends software.amazon.jsii.JsiiSerializable, CommonHostedZoneProps
Construction properties for a PublicHostedZone.

Example: 

 PublicHostedZone subZone = PublicHostedZone.Builder.create(this, "SubZone")
         .zoneName("sub.someexample.com")
         .build();
 // import the delegation role by constructing the roleArn
 String delegationRoleArn = Stack.of(this).formatArn(ArnComponents.builder()
         .region("") // IAM is global in each partition
         .service("iam")
         .account("parent-account-id")
         .resource("role")
         .resourceName("MyDelegationRole")
         .build());
 IRole delegationRole = Role.fromRoleArn(this, "DelegationRole", delegationRoleArn);
 CrossAccountZoneDelegationRecord.Builder.create(this, "delegate")
         .delegatedZone(subZone)
         .parentHostedZoneName("someexample.com") // or you can use parentHostedZoneId
         .delegationRole(delegationRole)
         .assumeRoleRegion("us-east-1")
         .build();

  • Method Details

    • getCaaAmazon

      @Stability(Stable) @Nullable default Boolean getCaaAmazon()
      Whether to create a CAA record to restrict certificate authorities allowed to issue certificates for this domain to Amazon only.

      Default: false

    • getCrossAccountZoneDelegationPrincipal

      @Stability(Deprecated) @Deprecated @Nullable default IPrincipal getCrossAccountZoneDelegationPrincipal()
      Deprecated.
      Create the Role yourself and call hostedZone.grantDelegation().
      (deprecated) A principal which is trusted to assume a role for zone delegation.

      If supplied, this will create a Role in the same account as the Hosted Zone, which can be assumed by the CrossAccountZoneDelegationRecord to create a delegation record to a zone in a different account.

      Be sure to indicate the account(s) that you trust to create delegation records, using either iam.AccountPrincipal or iam.OrganizationPrincipal.

      If you are planning to use iam.ServicePrincipals here, be sure to include region-specific service principals for every opt-in region you are going to be delegating to; or don't use this feature and create separate roles with appropriate permissions for every opt-in region instead.

      Default: - No delegation configuration

    • getCrossAccountZoneDelegationRoleName

      @Stability(Deprecated) @Deprecated @Nullable default String getCrossAccountZoneDelegationRoleName()
      Deprecated.
      Create the Role yourself and call hostedZone.grantDelegation().
      (deprecated) The name of the role created for cross account delegation.

      Default: - A role name is generated automatically

    • builder

      @Stability(Stable) static PublicHostedZoneProps.Builder builder()
      Returns:
      a PublicHostedZoneProps.Builder of PublicHostedZoneProps