1
// Package dnspod implements a DNS provider for solving the DNS-01 challenge
10
"github.com/decker502/dnspod-go"
11
"github.com/xenolf/lego/acme"
14
// DNSProvider is an implementation of the acme.ChallengeProvider interface.
15
type DNSProvider struct {
19
// NewDNSProvider returns a DNSProvider instance configured for dnspod.
20
// Credentials must be passed in the environment variables: DNSPOD_API_KEY.
21
func NewDNSProvider() (*DNSProvider, error) {
22
key := os.Getenv("DNSPOD_API_KEY")
23
return NewDNSProviderCredentials(key)
26
// NewDNSProviderCredentials uses the supplied credentials to return a
27
// DNSProvider instance configured for dnspod.
28
func NewDNSProviderCredentials(key string) (*DNSProvider, error) {
30
return nil, fmt.Errorf("dnspod credentials missing")
33
params := dnspod.CommonParams{LoginToken: key, Format: "json"}
35
client: dnspod.NewClient(params),
39
// Present creates a TXT record to fulfil the dns-01 challenge.
40
func (c *DNSProvider) Present(domain, token, keyAuth string) error {
41
fqdn, value, ttl := acme.DNS01Record(domain, keyAuth)
42
zoneID, zoneName, err := c.getHostedZone(domain)
47
recordAttributes := c.newTxtRecord(zoneName, fqdn, value, ttl)
48
_, _, err = c.client.Domains.CreateRecord(zoneID, *recordAttributes)
50
return fmt.Errorf("dnspod API call failed: %v", err)
56
// CleanUp removes the TXT record matching the specified parameters.
57
func (c *DNSProvider) CleanUp(domain, token, keyAuth string) error {
58
fqdn, _, _ := acme.DNS01Record(domain, keyAuth)
60
records, err := c.findTxtRecords(domain, fqdn)
65
zoneID, _, err := c.getHostedZone(domain)
70
for _, rec := range records {
71
_, err := c.client.Domains.DeleteRecord(zoneID, rec.ID)
79
func (c *DNSProvider) getHostedZone(domain string) (string, string, error) {
80
zones, _, err := c.client.Domains.List()
82
return "", "", fmt.Errorf("dnspod API call failed: %v", err)
85
authZone, err := acme.FindZoneByFqdn(acme.ToFqdn(domain), acme.RecursiveNameservers)
90
var hostedZone dnspod.Domain
91
for _, zone := range zones {
92
if zone.Name == acme.UnFqdn(authZone) {
97
if hostedZone.ID == 0 {
98
return "", "", fmt.Errorf("Zone %s not found in dnspod for domain %s", authZone, domain)
102
return fmt.Sprintf("%v", hostedZone.ID), hostedZone.Name, nil
105
func (c *DNSProvider) newTxtRecord(zone, fqdn, value string, ttl int) *dnspod.Record {
106
name := c.extractRecordName(fqdn, zone)
108
return &dnspod.Record{
117
func (c *DNSProvider) findTxtRecords(domain, fqdn string) ([]dnspod.Record, error) {
118
zoneID, zoneName, err := c.getHostedZone(domain)
123
var records []dnspod.Record
124
result, _, err := c.client.Domains.ListRecords(zoneID, "")
126
return records, fmt.Errorf("dnspod API call has failed: %v", err)
129
recordName := c.extractRecordName(fqdn, zoneName)
131
for _, record := range result {
132
if record.Name == recordName {
133
records = append(records, record)
140
func (c *DNSProvider) extractRecordName(fqdn, domain string) string {
141
name := acme.UnFqdn(fqdn)
142
if idx := strings.Index(name, "."+domain); idx != -1 {