cdh

command module
v0.3.3 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Dec 25, 2024 License: GPL-3.0 Imports: 14 Imported by: 0

README

CertBot DANE hook

Build status GoDoc

Description

CertBot DANE hook is a post deployment hook for certbot to update DANE records from various DNS providers.

Like certbot-dns-google, the following permissions are needed:

  • dns.changes.create
  • dns.changes.get
  • dns.managedZones.list
  • dns.resourceRecordSets.create
  • dns.resourceRecordSets.delete
  • dns.resourceRecordSets.list
  • dns.resourceRecordSets.update

Author

License

GNU General Public License, version 3

Documentation

Overview

Cdh takes the domain names and path of the live certificate from certbot and update related TLSA records on Google Cloud DNS.

The domain names are passed via the environment variable RENEWED_DOMAINS. The path of the certificate is passed via RENEWED_LINEAGE.

Currently Cdh only supports DANE certificate usage 3 (DANE-EE), selector 1 1 (public key, SHA-256).

Usage: 

cdh [flags]

The flags are: 

-k string
	path to the service account JSON key file
-z string
	name of the DNS zone

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.