This topic describes the scenarios that use the HTTPDNS service-linked role (AliyunServiceRoleForHttpdns) and explains how to delete the role.
Background information
The HTTPDNS service-linked role (AliyunServiceRoleForHttpdns) is a RAM role that enables HTTPDNS to access other Alibaba Cloud services for certain features. For more information about service-linked roles, see Service-linked roles.
Scenarios
The custom domain name parsing feature of HTTPDNS uses a service-linked role to obtain the required access permissions for Function Compute resources.
About AliyunServiceRoleForHttpdns
Role name: AliyunServiceRoleForHttpdns
Policy: AliyunServiceRolePolicyForHttpdns
Permissions:
{
"Version":"1",
"Statement":[
{
"Action":[
"fc:ListServiceVersions",
"fc:InvokeFunction",
"fc:ListServices",
"fc:ListFunctions",
"fc:ListTriggers",
"fc:ListVersions",
"fc:ListAliases",
"fc:GetService",
"fc:GetFunction",
"fc:GetTrigger",
"fc:GetAlias"
],
"Resource":"*",
"Effect":"Allow"
},
{
"Action":"ram:DeleteServiceLinkedRole",
"Resource":"*",
"Effect":"Allow",
"Condition":{
"StringEquals":{
"ram:ServiceName":"httpdns.aliyuncs.com"
}
}
}
]
}Delete the service-linked role
To delete the AliyunServiceRoleForHttpdns service-linked role, you must first disable the custom parsing feature for the domain name by toggling the switch off.
Delete the user-defined function parsing configuration. For more information, see Delete a policy.
To delete the service-linked role, see Service-linked roles.