forked from TrueCloudLab/lego
Merge pull request #68 from janeczku/encoding-dns01
Base64 encode dns-01 record
This commit is contained in:
commit
6863cc0c5b
1 changed files with 5 additions and 4 deletions
|
@ -2,11 +2,12 @@ package acme
|
||||||
|
|
||||||
import (
|
import (
|
||||||
"crypto/sha256"
|
"crypto/sha256"
|
||||||
"encoding/hex"
|
"encoding/base64"
|
||||||
"encoding/json"
|
"encoding/json"
|
||||||
"errors"
|
"errors"
|
||||||
"fmt"
|
"fmt"
|
||||||
"net/http"
|
"net/http"
|
||||||
|
"strings"
|
||||||
"time"
|
"time"
|
||||||
)
|
)
|
||||||
|
|
||||||
|
@ -34,9 +35,9 @@ func (s *dnsChallenge) Solve(chlng challenge, domain string) error {
|
||||||
}
|
}
|
||||||
|
|
||||||
keyAuthShaBytes := sha256.Sum256([]byte(keyAuth))
|
keyAuthShaBytes := sha256.Sum256([]byte(keyAuth))
|
||||||
// FIXME: Currently boulder does not conform to the spec as in it uses hex encoding instead
|
// base64URL encoding without padding
|
||||||
// of the base64 encoding mentioned by the spec. Fix this if either the spec or boulder changes!
|
keyAuthSha := base64.URLEncoding.EncodeToString(keyAuthShaBytes[:sha256.Size])
|
||||||
keyAuthSha := hex.EncodeToString(keyAuthShaBytes[:sha256.Size])
|
keyAuthSha = strings.TrimRight(keyAuthSha, "=")
|
||||||
|
|
||||||
fqdn := fmt.Sprintf("_acme-challenge.%s.", domain)
|
fqdn := fmt.Sprintf("_acme-challenge.%s.", domain)
|
||||||
if err = s.provider.CreateTXTRecord(fqdn, keyAuthSha, 120); err != nil {
|
if err = s.provider.CreateTXTRecord(fqdn, keyAuthSha, 120); err != nil {
|
||||||
|
|
Loading…
Reference in a new issue