#Certificate 
resource "aws_acm_certificate" "portal_cert" {
  domain_name       = "portal.${var.dns_info["public"]["zone"]}"
  validation_method = "DNS"

  tags = merge(var.standard_tags, var.tags)
}

resource "aws_acm_certificate_validation" "portal_cert" {
  certificate_arn         = aws_acm_certificate.portal_cert.arn
  validation_record_fqdns = [aws_route53_record.portal_cert_validation.fqdn]
}

resource "aws_route53_record" "portal_cert_validation" {
  provider = aws.mdr-common-services-commercial
  name     = aws_acm_certificate.portal_cert.domain_validation_options.0.resource_record_name
  type     = aws_acm_certificate.portal_cert.domain_validation_options.0.resource_record_type
  zone_id  = var.dns_info["public"]["zone_id"]
  records  = [aws_acm_certificate.portal_cert.domain_validation_options.0.resource_record_value]
  ttl      = 60
}