AliyunServiceRoleForHttpdns is the Resource Access Management (RAM) role that is linked to HTTPDNS. This topic describes the use scenarios of the RAM role and how to delete the RAM role.
Background information
AliyunServiceRoleForHttpdns is a RAM role that HTTPDNS assumes to access other Alibaba Cloud services to implement HTTPDNS features in specific scenarios. For more information, see Service-linked roles.
Scenarios
The custom domain name resolution feature of HTTPDNS requires access permissions on Function Compute resources, which can be obtained by using AliyunServiceRoleForHttpdns.
AliyunServiceRoleForHttpdns
Role name: AliyunServiceRoleForHttpdns
Policy: AliyunServiceRolePolicyForHttpdns
Permissions:
{
"Version":"1",
"Statement":[
{
"Action":[
"fc:ListServiceVersions",
"fc:InvokeFunction",
"fc:ListServices",
"fc:ListFunctions",
"fc:ListTriggers",
"fc:ListVersions",
"fc:ListAliases",
"fc:GetService",
"fc:GetFunction",
"fc:GetTrigger",
"fc:GetAlias"
],
"Resource":"*",
"Effect":"Allow"
},
{
"Action":"ram:DeleteServiceLinkedRole",
"Resource":"*",
"Effect":"Allow",
"Condition":{
"StringEquals":{
"ram:ServiceName":"httpdns.aliyuncs.com"
}
}
}
]
}Delete the service-linked role
If you want to delete the AliyunServiceRoleForHttpdns role, you must first disable the custom resolution feature for the current domain name.
For more information about how to delete the software-defined DNS (SDNS) configuration of the domain name, see Overview.
For more information about how to delete a service-linked role, see the "Delete a service-linked role" section of the Service-linked roles topic.