forked from TrueCloudLab/lego
fix: ns1 wildcard. (#657)
This commit is contained in:
parent
ad20bf90ff
commit
c09b12be08
2 changed files with 36 additions and 20 deletions
|
@ -196,7 +196,7 @@ func checkAuthoritativeNss(fqdn, value string, nameservers []string) (bool, erro
|
||||||
}
|
}
|
||||||
|
|
||||||
if !found {
|
if !found {
|
||||||
return false, fmt.Errorf("NS %s did not return the expected TXT record", ns)
|
return false, fmt.Errorf("NS %s did not return the expected TXT record [fqdn: %s]", ns, fqdn)
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
|
@ -10,6 +10,7 @@ import (
|
||||||
"time"
|
"time"
|
||||||
|
|
||||||
"github.com/xenolf/lego/acme"
|
"github.com/xenolf/lego/acme"
|
||||||
|
"github.com/xenolf/lego/log"
|
||||||
"github.com/xenolf/lego/platform/config/env"
|
"github.com/xenolf/lego/platform/config/env"
|
||||||
"gopkg.in/ns1/ns1-go.v2/rest"
|
"gopkg.in/ns1/ns1-go.v2/rest"
|
||||||
"gopkg.in/ns1/ns1-go.v2/rest/model/dns"
|
"gopkg.in/ns1/ns1-go.v2/rest/model/dns"
|
||||||
|
@ -90,15 +91,41 @@ func (d *DNSProvider) Present(domain, token, keyAuth string) error {
|
||||||
return fmt.Errorf("ns1: %v", err)
|
return fmt.Errorf("ns1: %v", err)
|
||||||
}
|
}
|
||||||
|
|
||||||
record := d.newTxtRecord(zone, fqdn, value, d.config.TTL)
|
record, _, err := d.client.Records.Get(zone.Zone, acme.UnFqdn(fqdn), "TXT")
|
||||||
|
|
||||||
|
// Create a new record
|
||||||
|
if err == rest.ErrRecordMissing || record == nil {
|
||||||
|
log.Infof("Create a new record for [zone: %s, fqdn: %s, domain: %s]", zone.Zone, fqdn)
|
||||||
|
|
||||||
|
record = dns.NewRecord(zone.Zone, acme.UnFqdn(fqdn), "TXT")
|
||||||
|
record.TTL = d.config.TTL
|
||||||
|
record.Answers = []*dns.Answer{{Rdata: []string{value}}}
|
||||||
|
|
||||||
_, err = d.client.Records.Create(record)
|
_, err = d.client.Records.Create(record)
|
||||||
if err != nil && err != rest.ErrRecordExists {
|
if err != nil {
|
||||||
return fmt.Errorf("ns1: failed to create record [zone: %q, fqdn: %q]: %v", zone.Zone, fqdn, err)
|
return fmt.Errorf("ns1: failed to create record [zone: %q, fqdn: %q]: %v", zone.Zone, fqdn, err)
|
||||||
}
|
}
|
||||||
|
|
||||||
return nil
|
return nil
|
||||||
}
|
}
|
||||||
|
|
||||||
|
if err != nil {
|
||||||
|
return fmt.Errorf("ns1: failed to get the existing record: %v", err)
|
||||||
|
}
|
||||||
|
|
||||||
|
// Update the existing records
|
||||||
|
record.Answers = append(record.Answers, &dns.Answer{Rdata: []string{value}})
|
||||||
|
|
||||||
|
log.Infof("Update an existing record for [zone: %s, fqdn: %s, domain: %s]", zone.Zone, fqdn, domain)
|
||||||
|
|
||||||
|
_, err = d.client.Records.Update(record)
|
||||||
|
if err != nil {
|
||||||
|
return fmt.Errorf("ns1: failed to update record [zone: %q, fqdn: %q]: %v", zone.Zone, fqdn, err)
|
||||||
|
}
|
||||||
|
|
||||||
|
return nil
|
||||||
|
}
|
||||||
|
|
||||||
// CleanUp removes the TXT record matching the specified parameters.
|
// CleanUp removes the TXT record matching the specified parameters.
|
||||||
func (d *DNSProvider) CleanUp(domain, token, keyAuth string) error {
|
func (d *DNSProvider) CleanUp(domain, token, keyAuth string) error {
|
||||||
fqdn, _, _ := acme.DNS01Record(domain, keyAuth)
|
fqdn, _, _ := acme.DNS01Record(domain, keyAuth)
|
||||||
|
@ -110,8 +137,11 @@ func (d *DNSProvider) CleanUp(domain, token, keyAuth string) error {
|
||||||
|
|
||||||
name := acme.UnFqdn(fqdn)
|
name := acme.UnFqdn(fqdn)
|
||||||
_, err = d.client.Records.Delete(zone.Zone, name, "TXT")
|
_, err = d.client.Records.Delete(zone.Zone, name, "TXT")
|
||||||
|
if err != nil {
|
||||||
return fmt.Errorf("ns1: failed to delete record [zone: %q, domain: %q]: %v", zone.Zone, name, err)
|
return fmt.Errorf("ns1: failed to delete record [zone: %q, domain: %q]: %v", zone.Zone, name, err)
|
||||||
}
|
}
|
||||||
|
return nil
|
||||||
|
}
|
||||||
|
|
||||||
// Timeout returns the timeout and interval to use when checking for DNS propagation.
|
// Timeout returns the timeout and interval to use when checking for DNS propagation.
|
||||||
// Adjusting here to cope with spikes in propagation times.
|
// Adjusting here to cope with spikes in propagation times.
|
||||||
|
@ -141,17 +171,3 @@ func getAuthZone(fqdn string) (string, error) {
|
||||||
|
|
||||||
return strings.TrimSuffix(authZone, "."), nil
|
return strings.TrimSuffix(authZone, "."), nil
|
||||||
}
|
}
|
||||||
|
|
||||||
func (d *DNSProvider) newTxtRecord(zone *dns.Zone, fqdn, value string, ttl int) *dns.Record {
|
|
||||||
name := acme.UnFqdn(fqdn)
|
|
||||||
|
|
||||||
return &dns.Record{
|
|
||||||
Type: "TXT",
|
|
||||||
Zone: zone.Zone,
|
|
||||||
Domain: name,
|
|
||||||
TTL: ttl,
|
|
||||||
Answers: []*dns.Answer{
|
|
||||||
{Rdata: []string{value}},
|
|
||||||
},
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
Loading…
Reference in a new issue