Common-PublicGSuiteRecordSets.yaml

AWSTemplateFormatVersion: 2010-09-09
Description: Common-PublicGSuiteRecordSets Template.
  This creates Google G Suite Public RecordSets in a Public HostedZone. These follow a consistent pattern.
Metadata:
  AWS::CloudFormation::Interface:
    ParameterGroups:
      - Label:
          default: Stack Dependencies
        Parameters:
          - PublicHostedZoneStackName
      - Label:
          default: RecordSet Configuration
        Parameters:
          - VerificationTXTValue
          - UseCustomURLs
    ParameterLabels:
      PublicHostedZoneStackName:
        default: PublicHostedZone Stack Name
      VerificationTXTValue:
        default: Google G Suite Verification TXT Value
      UseCustomURLs:
        default: Use Custom URLs
Parameters:
  PublicHostedZoneStackName:
    Description: Name of the CloudFormation Stack containing the Public HostedZone
    Type: String
    MaxLength: 64
    Default: Production-PublicHostedZone
    AllowedPattern: ^[A-Z][-a-zA-Z0-9]*$
    ConstraintDescription: must begin with an upper case letter and contain alphanumeric characters and dashes.
  VerificationTXTValue:
    Description: Value of G Suite Verification TXT Record (without quotes)
    Type: String
    Default: ''
    AllowedPattern: (^$|^google-site-verification=[_A-Za-z0-9]*$)
    ConstraintDescription: 'must begin with "google-site-verification=", then consiste of a string of Alphanumeric characters and underscores.'
  UseCustomURLs:
    Description: Configure Google G Suite Custom URL CNAME RecordSets
    Type: String
    Default: true
    AllowedValues:
      - true
      - false
    ConstraintDescription: must be either true or false.
Conditions:
  ConfigureVerificationTXTRecordSet: !Not [ !Equals [ !Ref VerificationTXTValue, '' ]]
  ConfigureCustomCNAMERecordSets: !Equals [ !Ref UseCustomURLs, true ]
Resources:
  PublicVerificationTXTRecordSet:
    Type: AWS::Route53::RecordSet
    Properties:
      HostedZoneId: !ImportValue
        Fn::Sub: ${PublicHostedZoneStackName}-PublicHostedZone
      Name: !Sub
        - ${PublicDomain}.
        - PublicDomain: !ImportValue
            Fn::Sub: ${PublicHostedZoneStackName}-PublicDomain
      Type: TXT
      TTL: 1800
      ResourceRecords:
        - !Sub '"${VerificationTXTValue}"'
    Condition: ConfigureVerificationTXTRecordSet
  PublicMXRecordSet:
    Type: AWS::Route53::RecordSet
    Properties:
      HostedZoneId: !ImportValue
        Fn::Sub: ${PublicHostedZoneStackName}-PublicHostedZone
      Name: !Sub
        - ${PublicDomain}.
        - PublicDomain: !ImportValue
            Fn::Sub: ${PublicHostedZoneStackName}-PublicDomain
      Type: MX
      TTL: 3600
      ResourceRecords:
        - 1 ASPMX.L.GOOGLE.COM.
        - 5 ALT1.ASPMX.L.GOOGLE.COM.
        - 5 ALT2.ASPMX.L.GOOGLE.COM.
        - 10 ASPMX2.GOOGLEMAIL.COM.
        - 10 ASPMX3.GOOGLEMAIL.COM.
  PublicMailCNAMERecordSet:
    Type: AWS::Route53::RecordSet
    Properties:
      HostedZoneId: !ImportValue
        Fn::Sub: ${PublicHostedZoneStackName}-PublicHostedZone
      Name: !Sub
        - mail.${PublicDomain}.
        - PublicDomain: !ImportValue
            Fn::Sub: ${PublicHostedZoneStackName}-PublicDomain
      Type: CNAME
      TTL: 3600
      ResourceRecords:
        - ghs.googlehosted.com.
    Condition: ConfigureCustomCNAMERecordSets
  PublicCalendarCNAMERecordSet:
    Type: AWS::Route53::RecordSet
    Properties:
      HostedZoneId: !ImportValue
        Fn::Sub: ${PublicHostedZoneStackName}-PublicHostedZone
      Name: !Sub
        - calendar.${PublicDomain}.
        - PublicDomain: !ImportValue
            Fn::Sub: ${PublicHostedZoneStackName}-PublicDomain
      Type: CNAME
      TTL: 3600
      ResourceRecords:
        - ghs.googlehosted.com.
    Condition: ConfigureCustomCNAMERecordSets
  PublicDriveCNAMERecordSet:
    Type: AWS::Route53::RecordSet
    Properties:
      HostedZoneId: !ImportValue
        Fn::Sub: ${PublicHostedZoneStackName}-PublicHostedZone
      Name: !Sub
        - drive.${PublicDomain}.
        - PublicDomain: !ImportValue
            Fn::Sub: ${PublicHostedZoneStackName}-PublicDomain
      Type: CNAME
      TTL: 3600
      ResourceRecords:
        - ghs.googlehosted.com.
    Condition: ConfigureCustomCNAMERecordSets
  PublicSitesCNAMERecordSet:
    Type: AWS::Route53::RecordSet
    Properties:
      HostedZoneId: !ImportValue
        Fn::Sub: ${PublicHostedZoneStackName}-PublicHostedZone
      Name: !Sub
        - sites.${PublicDomain}.
        - PublicDomain: !ImportValue
            Fn::Sub: ${PublicHostedZoneStackName}-PublicDomain
      Type: CNAME
      TTL: 3600
      ResourceRecords:
        - ghs.googlehosted.com.
    Condition: ConfigureCustomCNAMERecordSets