From dac9d812591e0357b91523c9b5d83398da180096 Mon Sep 17 00:00:00 2001
From: "Matthew C. Morgan" <matthew.c.morgan@census.gov>
Date: Wed, 18 Mar 2026 14:35:15 -0400
Subject: [PATCH] not needed to create auth with cluster phz

---
 README.md |  4 ---
 main.tf   | 76 +++++++++++++++++++++++++++----------------------------
 2 files changed, 38 insertions(+), 42 deletions(-)

diff --git a/README.md b/README.md
index 00c84f3..2658e42 100644
--- a/README.md
+++ b/README.md
@@ -45,15 +45,11 @@ No modules.
 | [aws_route53_record.entry](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/route53_record) | resource |
 | [aws_route53_vpc_association_authorization.central_zone_east](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/route53_vpc_association_authorization) | resource |
 | [aws_route53_vpc_association_authorization.central_zone_west](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/route53_vpc_association_authorization) | resource |
-| [aws_route53_vpc_association_authorization.cluster_zone_east](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/route53_vpc_association_authorization) | resource |
-| [aws_route53_vpc_association_authorization.cluster_zone_west](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/route53_vpc_association_authorization) | resource |
 | [aws_route53_vpc_association_authorization.legacy_zone_east](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/route53_vpc_association_authorization) | resource |
 | [aws_route53_vpc_association_authorization.legacy_zone_west](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/route53_vpc_association_authorization) | resource |
 | [aws_route53_zone.cluster_domain](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/route53_zone) | resource |
 | [aws_route53_zone_association.central_zone_east](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/route53_zone_association) | resource |
 | [aws_route53_zone_association.central_zone_west](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/route53_zone_association) | resource |
-| [aws_route53_zone_association.cluster_zone_east](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/route53_zone_association) | resource |
-| [aws_route53_zone_association.cluster_zone_west](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/route53_zone_association) | resource |
 | [aws_route53_zone_association.legacy_zone_east](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/route53_zone_association) | resource |
 | [aws_route53_zone_association.legacy_zone_west](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/route53_zone_association) | resource |
 | [null_resource.git_version](https://registry.terraform.io/providers/hashicorp/null/latest/docs/resources/resource) | resource |
diff --git a/main.tf b/main.tf
index 7f4ee1a..bc9f3ed 100644
--- a/main.tf
+++ b/main.tf
@@ -40,51 +40,51 @@ resource "aws_route53_zone" "cluster_domain" {
   )
 }
 
-#---
-# cluster domain associations with eks vpc
-# east region
-#---
-resource "aws_route53_vpc_association_authorization" "cluster_zone_east" {
-  count = local.region != var.region_map["east"] ? 1 : 0
-
-  provider   = aws.route53_self
-  vpc_id     = local.vpc_id
-  vpc_region = var.region_map["east"]
-  zone_id    = aws_route53_zone.cluster_domain.zone_id
-}
+# #---
+# # cluster domain associations with eks vpc
+# # east region
+# #---
+# resource "aws_route53_vpc_association_authorization" "cluster_zone_east" {
+#   count = local.region != var.region_map["east"] ? 1 : 0
+
+#   provider   = aws.route53_self
+#   vpc_id     = local.vpc_id
+#   vpc_region = var.region_map["east"]
+#   zone_id    = aws_route53_zone.cluster_domain.zone_id
+# }
 
-resource "aws_route53_zone_association" "cluster_zone_east" {
-  count = local.region != var.region_map["east"] ? 1 : 0
+# resource "aws_route53_zone_association" "cluster_zone_east" {
+#   count = local.region != var.region_map["east"] ? 1 : 0
 
-  provider   = aws.route53_main
-  vpc_id     = local.vpc_id
-  vpc_region = var.region_map["east"]
-  zone_id    = aws_route53_zone.cluster_domain.zone_id
+#   provider   = aws.route53_main
+#   vpc_id     = local.vpc_id
+#   vpc_region = var.region_map["east"]
+#   zone_id    = aws_route53_zone.cluster_domain.zone_id
 
-  depends_on = [aws_route53_vpc_association_authorization.cluster_zone_east]
-}
+#   depends_on = [aws_route53_vpc_association_authorization.cluster_zone_east]
+# }
 
-#-------------------------------------------------
-# cluster PHZ Association west region
-#-------------------------------------------------
-resource "aws_route53_vpc_association_authorization" "cluster_zone_west" {
-  count = local.region != var.region_map["west"] ? 1 : 0
+# #-------------------------------------------------
+# # cluster PHZ Association west region
+# #-------------------------------------------------
+# resource "aws_route53_vpc_association_authorization" "cluster_zone_west" {
+#   count = local.region != var.region_map["west"] ? 1 : 0
 
-  provider   = aws.route53_self
-  vpc_id     = local.vpc_id
-  vpc_region = var.region_map["west"]
-  zone_id    = aws_route53_zone.cluster_domain.zone_id
-}
+#   provider   = aws.route53_self
+#   vpc_id     = local.vpc_id
+#   vpc_region = var.region_map["west"]
+#   zone_id    = aws_route53_zone.cluster_domain.zone_id
+# }
 
-resource "aws_route53_zone_association" "cluster_zone_west" {
-  count      = local.region != var.region_map["west"] ? 1 : 0
-  provider   = aws.route53_main
-  vpc_id     = local.vpc_id
-  vpc_region = var.region_map["west"]
-  zone_id    = aws_route53_zone.cluster_domain.zone_id
+# resource "aws_route53_zone_association" "cluster_zone_west" {
+#   count      = local.region != var.region_map["west"] ? 1 : 0
+#   provider   = aws.route53_main
+#   vpc_id     = local.vpc_id
+#   vpc_region = var.region_map["west"]
+#   zone_id    = aws_route53_zone.cluster_domain.zone_id
 
-  depends_on = [aws_route53_vpc_association_authorization.cluster_zone_west]
-}
+#   depends_on = [aws_route53_vpc_association_authorization.cluster_zone_west]
+# }
 
 #---
 # cluster domain associations with central networking account