Coherence custom domain setup
Coherence supports two types of domain configurations depending on the reference architecture you choose:
- Per-service domains
- Per-environment domains with service routing via load balancer
In both cases, Coherence provides a valid domain with an SSL certificate.
Per-Service Domains
Per-service domains are supported by the following CNC architectures:
- Lambda-lite (AWS)
- Run-lite (GCP)
You will see the domain for each service on the environment details page:
For these architectures, each service gets its own domain. However, Coherence does not directly support custom domains for per-service configurations. To set up custom domains:
- For GCP (Run-lite): Use domain mapping in the Google Cloud Console
- For AWS (Lambda-lite): Use CloudFront with Lambda as origin. See Using Amazon CloudFront with AWS Lambda as Origin for guidance.
Per-Environment Domains
Per-environment domains are supported by:
- ECS (AWS)
- Cloud Run (GCP)
- GKE (GCP)
For these architectures, each environment gets a domain, and service routing is done using a load balancer based on URL path. You can also add custom domains:
- For GCP: Coherence provides a CNAME record to set in your DNS provider.
- For AWS: Coherence creates a new Route 53 hosted zone and provides 4 NS records to set in your DNS provider.
Here's what the UI looks like: You will see the domain for each service on the environment details page:
Common Issues
-
DNS Propagation: Changes to DNS records can take time to propagate globally. This may cause delays in domain availability after configuration.
-
CAA Records: Certificate Authority Authorization (CAA) records can prevent the cloud issuer from validating and issuing your certificate. Ensure your CAA records allow the necessary certificate authorities.
-
Wildcard Subdomains:
- AWS: Wildcard subdomains will have a valid certificate.
- GCP: Wildcard subdomains will not have a valid certificate by default.
For GCP, you can provide the name of a self-managed certificate in your cnc.yml
to add a wildcard cert. Contact Coherence support if you need assistance with this.
If you encounter any issues or need further clarification on domain configuration, please reach out to Coherence support.