forked from TrueCloudLab/lego
Merge pull request #68 from janeczku/encoding-dns01
Base64 encode dns-01 record
This commit is contained in:
xenolf
commit
6863cc0c5b
1 changed files with 5 additions and 4 deletions
|
|
@ -2,11 +2,12 @@ package acme
|
|||
|
||||
import (
|
||||
"crypto/sha256"
|
||||
"encoding/hex"
|
||||
"encoding/base64"
|
||||
"encoding/json"
|
||||
"errors"
|
||||
"fmt"
|
||||
"net/http"
|
||||
"strings"
|
||||
"time"
|
||||
)
|
||||
|
||||
|
|
@ -34,9 +35,9 @@ func (s *dnsChallenge) Solve(chlng challenge, domain string) error {
|
|||
}
|
||||
|
||||
keyAuthShaBytes := sha256.Sum256([]byte(keyAuth))
|
||||
// FIXME: Currently boulder does not conform to the spec as in it uses hex encoding instead
|
||||
// of the base64 encoding mentioned by the spec. Fix this if either the spec or boulder changes!
|
||||
keyAuthSha := hex.EncodeToString(keyAuthShaBytes[:sha256.Size])
|
||||
// base64URL encoding without padding
|
||||
keyAuthSha := base64.URLEncoding.EncodeToString(keyAuthShaBytes[:sha256.Size])
|
||||
keyAuthSha = strings.TrimRight(keyAuthSha, "=")
|
||||
|
||||
fqdn := fmt.Sprintf("_acme-challenge.%s.", domain)
|
||||
if err = s.provider.CreateTXTRecord(fqdn, keyAuthSha, 120); err != nil {
|
||||
|
|
|
|||
Loading…
Reference in a new issue