support DNS challenge for LE / ACME #120
Conversation
nbys
force-pushed
the
support_acme_dnschallenge
branch
2 times, most recently
from
89e695c to
2c59c94
Compare
nbys
force-pushed
the
support_acme_dnschallenge
branch
from
c4f2766 to
c103535
Compare
|
@umputun finally, I managed to obtain the certificates from LE. It is still a work in progress and not quite ready for review. But I would like to hear your opinion regarding this PR. |
nbys
force-pushed
the
support_acme_dnschallenge
branch
from
1c4d990 to
1007f6a
Compare
Yeah, I have expected smth like this, makes sense |
nbys
force-pushed
the
support_acme_dnschallenge
branch
from
25fd685 to
bfed10b
Compare
nbys
force-pushed
the
support_acme_dnschallenge
branch
from
bfed10b to
05069cb
Compare
nbys
force-pushed
the
support_acme_dnschallenge
branch
4 times, most recently
from
56ff477 to
f3fd5dd
Compare
|
@umputun I implement tests for my code. I mock some dependencies. It is rather hard to mock others. For example, it is not feasible to test code that does nameservers DNS lookup with a mock. I am testing some methods using my account in Cloudns. It would be very nice if we had a test account for one of the DNS providers designated for reproxy. We could test the DNS challenge and certificates issue against the LetsEncrypt staging environment. Would these efforts make sense? |
nbys
force-pushed
the
support_acme_dnschallenge
branch
2 times, most recently
from
8c2e113 to
5f9eb33
Compare
nbys
force-pushed
the
support_acme_dnschallenge
branch
4 times, most recently
from
e5704b8 to
6a7f778
Compare
nbys
force-pushed
the
support_acme_dnschallenge
branch
from
8117f37 to
299a428
Compare
| // "github.com/stretchr/testify/assert" | ||
| // ) | ||
|
|
||
| // var mockDNSResolver *mockdns.Server |
There was a problem hiding this comment.
The library github.com/foxcpp/go-mockdns I use for mock a DNS Nameserver blows up the dependency list. I am not quite sure, is there a way to add this dependency for the tests but avoid in in go.sum for reproxy itself?
|
@umputun overall it is ready for your review. I have two DNS providers implemented: Route53 and ClouDNS. I tested it with both and it looks good to me. |
|
@umputun somehow this PR stuck in the status Changes requested. Is this still something that I should take care of? |
|
@nbys - sorry, missed this one. Will try to get to this soon |
# Conflicts: # go.mod # go.sum # vendor/modules.txt
|
I've been in the process of consolidating all the pending PRs for our next release, which is expected to be the final one before v1. I've gone ahead and rebased your branch with the latest master, and also tackled a few minor linter issues, primarily related to redundant Sprintf. I hope you're still keen on making this happen. My plan is to wrap up the review today or tomorrow, but before I proceed, I wanted to check in and make sure you're still on board. I realize it's been quite a while, and I take full responsibility for the delay. However, as the saying goes, better late than never, right? ;) Looking forward to hearing from you. |
|
@umputun yes, I am still on board. But before you do review I'd like to take a look myself. So I will convert this PR to a draft and check if it still works after master was merged into it. of course if it is okay for you? |
|
sure, take yout time |
For #110