// Package hostingde implements a DNS provider for solving the DNS-01 challenge using hosting.de. package hostingde import ( "errors" "fmt" "net/http" "sync" "time" "github.com/go-acme/lego/v4/challenge/dns01" "github.com/go-acme/lego/v4/platform/config/env" ) // Environment variables names. const ( envNamespace = "HOSTINGDE_" EnvAPIKey = envNamespace + "API_KEY" EnvZoneName = envNamespace + "ZONE_NAME" EnvTTL = envNamespace + "TTL" EnvPropagationTimeout = envNamespace + "PROPAGATION_TIMEOUT" EnvPollingInterval = envNamespace + "POLLING_INTERVAL" EnvHTTPTimeout = envNamespace + "HTTP_TIMEOUT" ) // Config is used to configure the creation of the DNSProvider. type Config struct { APIKey string ZoneName string PropagationTimeout time.Duration PollingInterval time.Duration TTL int HTTPClient *http.Client } // NewDefaultConfig returns a default configuration for the DNSProvider. func NewDefaultConfig() *Config { return &Config{ TTL: env.GetOrDefaultInt(EnvTTL, dns01.DefaultTTL), PropagationTimeout: env.GetOrDefaultSecond(EnvPropagationTimeout, 2*time.Minute), PollingInterval: env.GetOrDefaultSecond(EnvPollingInterval, 2*time.Second), HTTPClient: &http.Client{ Timeout: env.GetOrDefaultSecond(EnvHTTPTimeout, 30*time.Second), }, } } // DNSProvider implements the challenge.Provider interface. type DNSProvider struct { config *Config recordIDs map[string]string recordIDsMu sync.Mutex } // NewDNSProvider returns a DNSProvider instance configured for hosting.de. // Credentials must be passed in the environment variables: // HOSTINGDE_ZONE_NAME and HOSTINGDE_API_KEY. func NewDNSProvider() (*DNSProvider, error) { values, err := env.Get(EnvAPIKey, EnvZoneName) if err != nil { return nil, fmt.Errorf("hostingde: %w", err) } config := NewDefaultConfig() config.APIKey = values[EnvAPIKey] config.ZoneName = values[EnvZoneName] return NewDNSProviderConfig(config) } // NewDNSProviderConfig return a DNSProvider instance configured for hosting.de. func NewDNSProviderConfig(config *Config) (*DNSProvider, error) { if config == nil { return nil, errors.New("hostingde: the configuration of the DNS provider is nil") } if config.APIKey == "" { return nil, errors.New("hostingde: API key missing") } if config.ZoneName == "" { return nil, errors.New("hostingde: Zone Name missing") } return &DNSProvider{ config: config, recordIDs: make(map[string]string), }, nil } // Timeout returns the timeout and interval to use when checking for DNS propagation. // Adjusting here to cope with spikes in propagation times. func (d *DNSProvider) Timeout() (timeout, interval time.Duration) { return d.config.PropagationTimeout, d.config.PollingInterval } // Present creates a TXT record to fulfill the dns-01 challenge. func (d *DNSProvider) Present(domain, token, keyAuth string) error { fqdn, value := dns01.GetRecord(domain, keyAuth) // get the ZoneConfig for that domain zonesFind := ZoneConfigsFindRequest{ Filter: Filter{ Field: "zoneName", Value: d.config.ZoneName, }, Limit: 1, Page: 1, } zonesFind.AuthToken = d.config.APIKey zoneConfig, err := d.getZone(zonesFind) if err != nil { return fmt.Errorf("hostingde: %w", err) } zoneConfig.Name = d.config.ZoneName rec := []DNSRecord{{ Type: "TXT", Name: dns01.UnFqdn(fqdn), Content: value, TTL: d.config.TTL, }} req := ZoneUpdateRequest{ ZoneConfig: *zoneConfig, RecordsToAdd: rec, } req.AuthToken = d.config.APIKey resp, err := d.updateZone(req) if err != nil { return fmt.Errorf("hostingde: %w", err) } for _, record := range resp.Response.Records { if record.Name == dns01.UnFqdn(fqdn) && record.Content == fmt.Sprintf(`"%s"`, value) { d.recordIDsMu.Lock() d.recordIDs[fqdn] = record.ID d.recordIDsMu.Unlock() } } if d.recordIDs[fqdn] == "" { return fmt.Errorf("hostingde: error getting ID of just created record, for domain %s", domain) } return nil } // CleanUp removes the TXT record matching the specified parameters. func (d *DNSProvider) CleanUp(domain, token, keyAuth string) error { fqdn, value := dns01.GetRecord(domain, keyAuth) rec := []DNSRecord{{ Type: "TXT", Name: dns01.UnFqdn(fqdn), Content: `"` + value + `"`, }} // get the ZoneConfig for that domain zonesFind := ZoneConfigsFindRequest{ Filter: Filter{ Field: "zoneName", Value: d.config.ZoneName, }, Limit: 1, Page: 1, } zonesFind.AuthToken = d.config.APIKey zoneConfig, err := d.getZone(zonesFind) if err != nil { return fmt.Errorf("hostingde: %w", err) } zoneConfig.Name = d.config.ZoneName req := ZoneUpdateRequest{ ZoneConfig: *zoneConfig, RecordsToDelete: rec, } req.AuthToken = d.config.APIKey // Delete record ID from map d.recordIDsMu.Lock() delete(d.recordIDs, fqdn) d.recordIDsMu.Unlock() _, err = d.updateZone(req) if err != nil { return fmt.Errorf("hostingde: %w", err) } return nil }