HttpApiDomainConfiguration
Configures a custom domain for an API.
Syntax
To declare this entity in your AWS Serverless Application Model (AWS SAM) template, use the following syntax.
YAML
BasePath:ListCertificateArn:StringDomainName:StringEndpointConfiguration:StringMutualTlsAuthentication:MutualTlsAuthenticationOwnershipVerificationCertificateArn:StringRoute53:Route53ConfigurationSecurityPolicy:String
Properties
-
BasePath -
A list of the basepaths to configure with the Amazon API Gateway domain name.
Type: List
Required: No
Default: /
CloudFormation compatibility: This property is similar to the
ApiMappingKeyproperty of anAWS::ApiGatewayV2::ApiMappingresource. AWS SAM creates multipleAWS::ApiGatewayV2::ApiMappingresources, one per value specified in this property. -
CertificateArn -
The Amazon Resource Name (ARN) of an AWS managed certificate for this domain name's endpoint. AWS Certificate Manager is the only supported source.
Type: String
Required: Yes
CloudFormation compatibility: This property is passed directly to the
CertificateArnproperty of anAWS::ApiGateway2::DomainName DomainNameConfigurationresource. -
DomainName -
The custom domain name for your API Gateway API. Uppercase letters are not supported.
AWS SAM generates an
AWS::ApiGatewayV2::DomainNameresource when this property is set. For information about this scenario, see DomainName property is specified. For information about generated CloudFormation resources, see Generated CloudFormation resources for AWS SAM.Type: String
Required: Yes
CloudFormation compatibility: This property is passed directly to the
DomainNameproperty of anAWS::ApiGateway2::DomainNameresource. -
EndpointConfiguration -
Defines the type of API Gateway endpoint to map to the custom domain. The value of this property determines how the
CertificateArnproperty is mapped in CloudFormation.The only valid value for HTTP APIs is
REGIONAL.Type: String
Required: No
Default:
REGIONALCloudFormation compatibility: This property is unique to AWS SAM and doesn't have an CloudFormation equivalent.
-
MutualTlsAuthentication -
The mutual transport layer security (TLS) authentication configuration for a custom domain name.
Type: MutualTlsAuthentication
Required: No
CloudFormation compatibility: This property is passed directly to the
MutualTlsAuthenticationproperty of anAWS::ApiGatewayV2::DomainNameresource. -
OwnershipVerificationCertificateArn -
The ARN of the public certificate issued by ACM to validate ownership of your custom domain. Required only when you configure mutual TLS and you specify an ACM imported or private CA certificate ARN for the
CertificateArn.Type: String
Required: No
CloudFormation compatibility: This property is passed directly to the
OwnershipVerificationCertificateArnproperty of theAWS::ApiGatewayV2::DomainNameDomainNameConfigurationdata type. -
Route53 -
Defines an Amazon RouteĀ 53 configuration.
Type: Route53Configuration
Required: No
CloudFormation compatibility: This property is unique to AWS SAM and doesn't have an CloudFormation equivalent.
-
SecurityPolicy -
The TLS version of the security policy for this domain name.
The only valid value for HTTP APIs is
TLS_1_2.Type: String
Required: No
CloudFormation compatibility: This property is passed directly to the
SecurityPolicyproperty of theAWS::ApiGatewayV2::DomainNameDomainNameConfigurationdata type.
Examples
DomainName
DomainName example
YAML
Domain: DomainName: www.example.com CertificateArn: arn-example EndpointConfiguration: REGIONAL Route53: HostedZoneId: Z1PA6795UKMFR9 BasePath: - foo - bar
