mirror of
https://github.com/caddyserver/caddy.git
synced 2024-12-23 22:27:38 -05:00
09188981c4
* tls: Add support for the tls-alpn-01 challenge Also updates lego/acme to latest on master. TODO: This implementation of the tls-alpn challenge is not yet solvable in a distributed Caddy cluster like the http challenge is. * build: Allow building with the race detector * tls: Support distributed solving of the TLS-ALPN-01 challenge * Update vendor and add a todo in MITM checker
55 lines
1.4 KiB
Go
55 lines
1.4 KiB
Go
package acme
|
|
|
|
import (
|
|
"bufio"
|
|
"fmt"
|
|
"os"
|
|
|
|
"github.com/xenolf/lego/log"
|
|
)
|
|
|
|
const (
|
|
dnsTemplate = "%s %d IN TXT \"%s\""
|
|
)
|
|
|
|
// DNSProviderManual is an implementation of the ChallengeProvider interface
|
|
type DNSProviderManual struct{}
|
|
|
|
// NewDNSProviderManual returns a DNSProviderManual instance.
|
|
func NewDNSProviderManual() (*DNSProviderManual, error) {
|
|
return &DNSProviderManual{}, nil
|
|
}
|
|
|
|
// Present prints instructions for manually creating the TXT record
|
|
func (*DNSProviderManual) Present(domain, token, keyAuth string) error {
|
|
fqdn, value, ttl := DNS01Record(domain, keyAuth)
|
|
dnsRecord := fmt.Sprintf(dnsTemplate, fqdn, ttl, value)
|
|
|
|
authZone, err := FindZoneByFqdn(fqdn, RecursiveNameservers)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
log.Infof("acme: Please create the following TXT record in your %s zone:", authZone)
|
|
log.Infof("acme: %s", dnsRecord)
|
|
log.Infof("acme: Press 'Enter' when you are done")
|
|
|
|
reader := bufio.NewReader(os.Stdin)
|
|
_, _ = reader.ReadString('\n')
|
|
return nil
|
|
}
|
|
|
|
// CleanUp prints instructions for manually removing the TXT record
|
|
func (*DNSProviderManual) CleanUp(domain, token, keyAuth string) error {
|
|
fqdn, _, ttl := DNS01Record(domain, keyAuth)
|
|
dnsRecord := fmt.Sprintf(dnsTemplate, fqdn, ttl, "...")
|
|
|
|
authZone, err := FindZoneByFqdn(fqdn, RecursiveNameservers)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
log.Infof("acme: You can now remove this TXT record from your %s zone:", authZone)
|
|
log.Infof("acme: %s", dnsRecord)
|
|
return nil
|
|
}
|