-
Notifications
You must be signed in to change notification settings - Fork 16
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
multilevel domain name can't be used for ACME challenge #8
Labels
bug
Something isn't working
Comments
ArchiFleKs
changed the title
multilevel domain name can't be used
multilevel domain name can't be used for ACME challenge
Nov 29, 2021
Closed
Hey,
---
# cluster-issuer.yaml
apiVersion: cert-manager.io/v1
kind: ClusterIssuer
metadata:
name: letsencrypt-prod
spec:
acme:
privateKeySecretRef:
name: letsencrypt-prod
server: https://acme-v02.api.letsencrypt.org/directory
solvers:
- dns01:
cnameStrategy: None
webhook:
groupName: acme.scaleway.com
solverName: scaleway
---
# certificate.yaml
apiVersion: cert-manager.io/v1
kind: Certificate
metadata:
name: test.scw.mydomain.com
spec:
commonName: test.scw.mydomain.com
dnsNames:
- test.scw.mydomain.com
issuerRef:
group: cert-manager.io
kind: ClusterIssuer
name: letsencrypt-prod
secretName: test.scw.mydomain.com-tls
usages:
- digital signature
- key encipherment
---
# certificate-subdomain.yaml
apiVersion: cert-manager.io/v1
kind: Certificate
metadata:
name: test.subdomain.scw.mydomain.com
spec:
commonName: test.subdomain.scw.mydomain.com
dnsNames:
- test.subdomain.scw.mydomain.com
issuerRef:
group: cert-manager.io
kind: ClusterIssuer
name: letsencrypt-prod
secretName: test.subdomain.scw.mydomain.com-tls
usages:
- digital signature
- key encipherment
|
Feel free to come ask around on the community slack on the |
Since there's been no response since November 2021, I'll close that issue. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
I have a zone in scaleway DNS with
scw.mydomain.com
With external DNS, I can create a domain like
test.subdomain.scw.mydomain.com
this works fine on Scaleway and AWS and the records is used in Scaleway.When using this webhook with cert-manager and acme DNS-01 Challenge it fails with
failed to update DNS zone recrds: scaleway-sdk-go: http error 403 Forbidden: domain not found
because this only parse the first.
When using cert-manager with route53 there is no issue with subdomain not declare as a "real" zone.A workaround would be to actually create the zone but it is not practical for me. Is there any way to check from the last
.
and try to match a zone and iterate like this. And picking the last one found ?To Reproduce
Use a multi level domain name as a record
Expected behavior
ACME Challenge is created
Details (please complete the following information):
The text was updated successfully, but these errors were encountered: