Failure to create custom domain for ApiGateway with securityPolicy "SecurityPolicy_TLS13_2025_EDGE" #13332
Description
Issue description
I have following custom domain config for my stack with rest ApiGateway and some lambdas:
domain:
enabled: true
name: mydomain.example.com
certificateName: '*.example.com'
apiType: rest
endpointType: edge
securityPolicy: SecurityPolicy_TLS13_2025_EDGE
When updating a existing stack which has ApiGateway custom domain with TLS_1_2 security policy, the new security policy is not updated and it stays as TLS_1_2.
If I try to create new stack with following config then error is thrown:
✖ Error: Unable to create domain 'mydomain.example.com':
V1 - Failed to create custom domain 'mydomain.example.com':
Endpoint access mode is required for the specified security policy
at ServerlessCustomDomain.createDomain (file:///home/tatutahv/.serverless/releases/4.31.2/package/dist/sf-core.js:1828:185)
at process.processTicksAndRejections (node:internal/process/task_queues:103:5)
at async file:///home/tatutahv/.serverless/releases/4.31.2/package/dist/sf-core.js:1830:268
at async Promise.all (index 0)
at async ServerlessCustomDomain.createOrGetDomainForCfOutputs (file:///home/tatutahv/.serverless/releases/4.31.2/package/dist/sf-core.js:1830:141)
at async PluginManager.runHooks (file:///home/tatutahv/.serverless/releases/4.31.2/package/dist/sf-core.js:1923:11246)
at async PluginManager.invoke (file:///home/tatutahv/.serverless/releases/4.31.2/package/dist/sf-core.js:1923:11956)
at async PluginManager.run (file:///home/tatutahv/.serverless/releases/4.31.2/package/dist/sf-core.js:1923:12754)
at async Serverless.run (file:///home/tatutahv/.serverless/releases/4.31.2/package/dist/sf-core.js:1930:10564)
at async runFramework (file:///home/tatutahv/.serverless/releases/4.31.2/package/dist/sf-core.js:1957:1781)
Context
No response