Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update TLSA DNS records with certbot-dns-cloudflare plugin #8769

Open
kiwixz opened this issue Apr 2, 2021 · 6 comments
Open

Update TLSA DNS records with certbot-dns-cloudflare plugin #8769

kiwixz opened this issue Apr 2, 2021 · 6 comments
Labels
area: dns feature request priority: unplanned Work that we believe should be done, but does not have a higher priority.

Comments

@kiwixz
Copy link

kiwixz commented Apr 2, 2021
edited
Loading

It would be nice if certbot could update those records after the challenge, as it's already using cloudflare API to add records anyway.

Wikipedia: https://en.wikipedia.org/wiki/DNS-based_Authentication_of_Named_Entities#TLSA_RR

Related: #230.
@ohemorange ohemorange added area: dns feature request priority: unplanned Work that we believe should be done, but does not have a higher priority. labels Apr 6, 2021
@ohemorange
Copy link
Contributor

Thanks for the suggestion!

@stale
Copy link

stale bot commented Apr 17, 2022

We've made a lot of changes to Certbot since this issue was opened. If you still have this issue with an up-to-date version of Certbot, can you please add a comment letting us know? This helps us to better see what issues are still affecting our users. If there is no activity in the next 30 days, this issue will be automatically closed.

@stale stale bot added the needs-update label Apr 17, 2022
@Eric-Sparks
Copy link

This ticket is still needed.

@stale stale bot removed the needs-update label Sep 18, 2022
@BartG95 BartG95 mentioned this issue Nov 12, 2022
Open
@github-actions
Copy link

We've made a lot of changes to Certbot since this issue was opened. If you still have this issue with an up-to-date version of Certbot, can you please add a comment letting us know? This helps us to better see what issues are still affecting our users. If there is no activity in the next 30 days, this issue will be automatically closed.

@BartG95
Copy link

BartG95 commented Sep 18, 2023

Still needed.

@ftasnetamot
Copy link

This is still needed. Right now you have either the choice to run certbot with "reuse_key = True" or use some hacks around, to deploy the TLSA keys in the same way, certbot negotiates via dns-rfc2136 the cert update.
Would be perfect, if this can be integrated into certbot.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area: dns feature request priority: unplanned Work that we believe should be done, but does not have a higher priority.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@ohemorange @BartG95 @kiwixz @Eric-Sparks @ftasnetamot