New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add a override_domain option to allow DNS challenge delegation #4596
Conversation
CNAME can be used to delegate answering the chanllenge to another DNS zone. One usage is to reduce the exposure of the DNS credential [1]. Based on the discussion in caddy/certmagic#160, we are adding an option to allow the user explicitly specify the domain to delegate, instead of following the CNAME chain. This needs caddy/certmagic#160.
I think maybe we should change the option to something like |
Changed to |
@crccw We just need you to sign the CLA and then we can merge this. If you do it today we can get it in the v2.5 prereleases. |
Just signed. Do we need to wait for a certmagic release and bump the dependency version before merging this? |
@crccw Thanks!
Already done 😉 |
CNAME can be used to delegate answering the chanllenge to another DNS
zone. One usage is to reduce the exposure of the DNS credential [1].
Based on the discussion in caddy/certmagic#160, we are adding an option
to allow the user explicitly specify the domain to delegate, instead of
following the CNAME chain.
This needs caddyserver/certmagic#160.