From 8d0007b9c06f3e40305eab1083dcf7bb3fdda14f Mon Sep 17 00:00:00 2001
From: Hossein Shafagh <hshafagh@netflix.com>
Date: Fri, 24 Apr 2020 15:48:06 -0700
Subject: [PATCH] fixing the private DNS zone issue. Private hosted zones will
 never be visible to third-parties like LetsEncrypt, and Lemur should not
 consider them as authoritative zones. This fix, make sure  they are not added
 to the  dns_provider table.

---
 lemur/plugins/lemur_acme/route53.py | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/lemur/plugins/lemur_acme/route53.py b/lemur/plugins/lemur_acme/route53.py
index 55da5161..aaccb57e 100644
--- a/lemur/plugins/lemur_acme/route53.py
+++ b/lemur/plugins/lemur_acme/route53.py
@@ -35,9 +35,10 @@ def get_zones(client=None):
     zones = []
     for page in paginator.paginate():
         for zone in page["HostedZones"]:
-            zones.append(
-                zone["Name"][:-1]
-            )  # We need [:-1] to strip out the trailing dot.
+            if not zone["Config"]["PrivateZone"]:
+                zones.append(
+                    zone["Name"][:-1]
+                )  # We need [:-1] to strip out the trailing dot.
     return zones