Skip to content

Support DNS delegation #947

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 14 commits into
base: dev
Choose a base branch
from
Open

Support DNS delegation #947

wants to merge 14 commits into from

Conversation

MarcelWaldvogel
Copy link
Contributor

If the certificate requestor does not have real-time write access to the domain name the certificate is for (example.com and www.example.com), but to another domain (example.net), it is possible to create a CNAME once pointing into the writable domain, and then request the certificate for the entries in the static domain. See README.md for more details.

Notes:

  • This is based on the nsupdate -l-like support PR nsupdate -l-like mode #946
  • Please let me know if you feel that this should be a more generic option, not only applicable to nsupdate (probably then it should be integrated into acme.sh instead)

MarcelWaldvogel and others added 14 commits July 16, 2017 20:43
@MarcelWaldvogel
Make cron run twice a day, randomly
12ee24e 
Run cron twice a day to make sure certificates are guaranteed to be renewed
at least once during the last 24 hours of the certificate lifetime.
@MarcelWaldvogel
Interface to nsupdate -l
5d26312 
Configurationless operation when `nsupdate -l` works
@MarcelWaldvogel
Merge branch 'random-cron'
a929fda
@MarcelWaldvogel
Configurationless nsupdate -l-like mode
16e6a55 
When `nsupdate -l` works, `-dnsapi nsupdate` requires no further
configuration. It does not use `nsupdate -l` (would imply more code
and more code changes), but points `nsupdate -k` at the key which
would be used by `nsupdate -l`.
@MarcelWaldvogel
Support CNAME certificate creation delegation
89c1db5
@MarcelWaldvogel
Merge remote-tracking branch 'upstream/master'
9391d2d 
Manually changed $_CRONTAB
@MarcelWaldvogel
Merge branch 'master' into dns-delegation
e47d28a
@MarcelWaldvogel
Merge branch 'master' of github.com:Neilpang/acme.sh
b24f324
@MarcelWaldvogel
Merge branch 'master' into dns-delegation
5def1e0
@MarcelWaldvogel
nsupdate -l has long been incorporated into nsupdate
9dab1b1
@MarcelWaldvogel
Merge remote-tracking branch 'upstream/master'
7191273
@MarcelWaldvogel
Merge branch 'master' into dns-delegation
3e4910a
@MarcelWaldvogel
Merge branch 'master' of github.com:Neilpang/acme.sh
e2f8b26
@MarcelWaldvogel
Merge branch 'master' into dns-delegation
291a68f
@Neilpang Neilpang deleted the branch acmesh-official:dev January 19, 2022 12:56
@Neilpang Neilpang closed this Jan 19, 2022
@Neilpang Neilpang reopened this Jan 19, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@MarcelWaldvogel @Neilpang