Provides a Cloudflare custom hostname (also known as SSL for SaaS) resource.
resource "cloudflare_custom_hostname" "example" {
zone_id = "0da42c8d2132a9ddaf714f9e7c920711"
hostname = "hostname.example.com"
ssl {
method = "txt"
}
}
hostname
(String) Hostname you intend to request a certificate for. Modifying this attribute will force creation of a new resource.zone_id
(String) The zone identifier to target for the resource. Modifying this attribute will force creation of a new resource.custom_metadata
(Map of String) Custom metadata associated with custom hostname. Only supports primitive string values, all other values are accessible via the API directly.custom_origin_server
(String) The custom origin server used for certificates.custom_origin_sni
(String) The custom origin SNI used for certificates.ssl
(Block List) SSL properties used when creating the custom hostname. (see below for nested schema)wait_for_ssl_pending_validation
(Boolean) Whether to wait for a custom hostname SSL sub-object to reach status pending_validation
during creation. Defaults to false
.id
(String) The ID of this resource.ownership_verification
(Map of String)ownership_verification_http
(Map of String)status
(String) Status of the certificate.ssl
Optional:
bundle_method
(String) A ubiquitous bundle has the highest probability of being verified everywhere, even by clients using outdated or unusual trust stores. An optimal bundle uses the shortest chain and newest intermediates. And the force bundle verifies the chain, but does not otherwise modify it. Available values: ubiquitous
, optimal
, force
.certificate_authority
(String)custom_certificate
(String) If a custom uploaded certificate is used.custom_key
(String) The key for a custom uploaded certificate.method
(String) Domain control validation (DCV) method used for this hostname. Available values: http
, txt
, email
.settings
(Block List) SSL/TLS settings for the certificate. (see below for nested schema)type
(String) Level of validation to be used for this hostname. Available values: dv
. Defaults to dv
.wildcard
(Boolean) Indicates whether the certificate covers a wildcard.Read-Only:
status
(String)validation_errors
(List of Object) (see below for nested schema)validation_records
(List of Object) (see below for nested schema)ssl.settings
Optional:
ciphers
(Set of String) List of SSL/TLS ciphers to associate with this certificate.early_hints
(String) Whether early hints should be supported. Available values: on
, off
.http2
(String) Whether HTTP2 should be supported. Available values: on
, off
.min_tls_version
(String) Lowest version of TLS this certificate should support. Available values: 1.0
, 1.1
, 1.2
, 1.3
.tls13
(String) Whether TLSv1.3 should be supported. Available values: on
, off
.ssl.validation_errors
Read-Only:
message
(String)ssl.validation_records
Read-Only:
cname_name
(String)cname_target
(String)emails
(List of String)http_body
(String)http_url
(String)txt_name
(String)txt_value
(String)Import is supported using the following syntax:
$ terraform import cloudflare_custom_hostname.example 1d5fdc9e88c8a8c4518b068cd94331fe/0d89c70d-ad9f-4843-b99f-6cc0252067e9