Documentation ¶
Overview ¶
Package rfc2136 implements a DNS provider for solving the DNS-01 challenge using the rfc2136 dynamic update.
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Config ¶
type Config struct { Nameserver string TSIGAlgorithm string TSIGKey string TSIGSecret string PropagationTimeout time.Duration PollingInterval time.Duration TTL int }
Config is used to configure the creation of the DNSProvider
func NewDefaultConfig ¶
func NewDefaultConfig() *Config
NewDefaultConfig returns a default configuration for the DNSProvider
type DNSProvider ¶
type DNSProvider struct {
// contains filtered or unexported fields
}
DNSProvider is an implementation of the acme.ChallengeProvider interface that uses dynamic DNS updates (RFC 2136) to create TXT records on a nameserver.
func NewDNSProvider ¶
func NewDNSProvider() (*DNSProvider, error)
NewDNSProvider returns a DNSProvider instance configured for rfc2136 dynamic update. Configured with environment variables: RFC2136_NAMESERVER: Network address in the form "host" or "host:port". RFC2136_TSIG_ALGORITHM: Defaults to hmac-md5.sig-alg.reg.int. (HMAC-MD5). See https://github.com/miekg/dns/blob/master/tsig.go for supported values. RFC2136_TSIG_KEY: Name of the secret key as defined in DNS server configuration. RFC2136_TSIG_SECRET: Secret key payload. RFC2136_TIMEOUT: DNS propagation timeout in time.ParseDuration format. (60s) To disable TSIG authentication, leave the RFC2136_TSIG* variables unset.
func NewDNSProviderConfig ¶
func NewDNSProviderConfig(config *Config) (*DNSProvider, error)
NewDNSProviderConfig return a DNSProvider instance configured for rfc2136.
func NewDNSProviderCredentials ¶
func NewDNSProviderCredentials(nameserver, tsigAlgorithm, tsigKey, tsigSecret, rawTimeout string) (*DNSProvider, error)
NewDNSProviderCredentials uses the supplied credentials to return a DNSProvider instance configured for rfc2136 dynamic update. To disable TSIG authentication, leave the TSIG parameters as empty strings. nameserver must be a network address in the form "host" or "host:port". Deprecated
func (*DNSProvider) CleanUp ¶
func (d *DNSProvider) CleanUp(domain, token, keyAuth string) error
CleanUp removes the TXT record matching the specified parameters
func (*DNSProvider) Present ¶
func (d *DNSProvider) Present(domain, token, keyAuth string) error
Present creates a TXT record using the specified parameters
func (*DNSProvider) Timeout ¶
func (d *DNSProvider) Timeout() (timeout, interval time.Duration)
Timeout returns the timeout and interval to use when checking for DNS propagation. Adjusting here to cope with spikes in propagation times.