Skip to content

v1.5.0: Domain Alias Support

Latest
Latest

Choose a tag to compare

View all tags
@fabriziosalmi fabriziosalmi released this 06 Dec 22:54
v1.5.0
f5cf140

🎯 Domain Alias Support

This release implements domain alias support for DNS challenges, a highly requested feature (#39) that enables advanced DNS validation scenarios.

✨ What's New

Domain Alias for DNS Challenges

  • Specify an alternative domain for DNS validation records
  • Certificate for example.com with DNS validation on _acme-challenge.validation.example.org
  • Fully optional and backward compatible

πŸš€ Use Cases

  1. Centralized DNS Validation

    • Manage all ACME DNS challenges on a single validation domain
    • Simplify DNS infrastructure and reduce API token sprawl

  2. DNS API Limitations

    • Primary domain doesn't support DNS API
    • Work around DNS provider restrictions

  3. Enterprise Architecture

    • Separate validation infrastructure from production DNS
    • Enhanced security through DNS isolation

πŸ“– Usage Example

# API Request
POST /api/certificates/create
Authorization: Bearer your_token_here
Content-Type: application/json

{
  "domain": "example.com",
  "dns_provider": "cloudflare",
  "domain_alias": "_acme-challenge.validation.example.org"
}

This creates a certificate for example.com but performs DNS validation on _acme-challenge.validation.example.org.

πŸ”§ Technical Details

Changes:

  • Added optional domain_alias parameter to certificate creation API
  • Updated all 15+ DNS provider strategies to support domain alias
  • Passes --domain-alias flag to Certbot when specified

Testing:

  • 5 new comprehensive tests for domain alias functionality
  • All 32 tests passing (27 existing + 5 new)
  • Validates backward compatibility

Files Modified:

  • modules/core/dns_strategies.py - Domain alias support in all strategies
  • modules/core/certificates.py - Pass domain_alias to DNS strategy
  • modules/api/models.py - Added domain_alias field
  • modules/api/resources.py - Extract and pass domain_alias
  • test_domain_alias.py - New test suite
  • README.md - Documentation and examples

βœ… Quality Assurance

  • βœ… All 32 tests passing
  • βœ… Backward compatible - no breaking changes
  • βœ… Works with all DNS providers
  • βœ… Comprehensive documentation

πŸ› Fixes

  • Closes #39 - Domain alias DNS challenge support

Full Changelog: v1.4.0...v1.5.0

Assets 2
Loading