From 421a2ad11dcd1bd084ab286ba53a749835167bf5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E6=9E=97=E5=8D=83=E9=87=8C?= <lincheney@gmail.com>
Date: Thu, 9 Mar 2023 18:21:04 +1100
Subject: [PATCH] specify keyTypes explicitly, otherwise aws acm
 list-certificates doesn't include all certs

---
 lib/cert-functions | 1 +
 1 file changed, 1 insertion(+)

diff --git a/lib/cert-functions b/lib/cert-functions
index 2afee612..9560e4e9 100644
--- a/lib/cert-functions
+++ b/lib/cert-functions
@@ -14,6 +14,7 @@ certs() {
   [[ -n ${include_arn:-} ]] && include_arn_bit="CertificateArn,"
   local retrieved_cert_arns=$(
     aws acm list-certificates      \
+      --includes keyTypes=RSA_1024,RSA_2048,EC_secp384r1,EC_prime256v1,EC_secp521r1,RSA_3072,RSA_4096 \
       --output text                \
       --query "
         CertificateSummaryList[${cert_arns:+?contains(['${cert_arns// /"','"}'], CertificateArn)}].[