Skip to content

Merge 1.1.0 to main #10

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
indrora merged 1 commit into from
Dec 8, 2025
Merged

Merge 1.1.0 to main #10

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
40 changes: 26 additions & 14 deletions AcmeCaPlugin/AcmeCaPlugin.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -370,7 +370,7 @@ private async Task ProcessAuthorizations(AcmeClient acmeClient, OrderDetails ord
if (validation == null)
throw new InvalidOperationException($"Failed to decode {DNS_CHALLENGE_TYPE} challenge validation details");

// Create DNS record
// Create DNS record (will throw exception with details if it fails)
var dnsProvider = DnsProviderFactory.Create(config, _logger);
await dnsProvider.CreateRecordAsync(validation.DnsRecordName, validation.DnsRecordValue);

Expand All @@ -383,22 +383,34 @@ private async Task ProcessAuthorizations(AcmeClient acmeClient, OrderDetails ord
// Second pass: Wait for DNS propagation and submit challenges
foreach (var (authz, challenge, validation) in pendingChallenges)
{
_logger.LogInformation("Waiting for DNS propagation for {Domain}...", authz.Identifier.Value);
// Skip external DNS verification for Infoblox since it cannot ping external DNS providers
bool isInfoblox = config.DnsProvider?.Trim().Equals("infoblox", StringComparison.OrdinalIgnoreCase) ?? false;

// Wait for DNS propagation with verification
var propagated = await dnsVerifier.WaitForDnsPropagationAsync(
validation.DnsRecordName,
validation.DnsRecordValue,
minimumServers: 3 // Require at least 3 DNS servers to confirm
);

if (!propagated)
if (isInfoblox)
{
_logger.LogInformation("Skipping external DNS propagation check for Infoblox provider for {Domain}. Adding short delay...", authz.Identifier.Value);
// Add a short delay to allow Infoblox to process the record internally
await Task.Delay(TimeSpan.FromSeconds(5));
}
else
{
_logger.LogWarning("DNS record may not have fully propagated for {Domain}. Proceeding anyway...",
authz.Identifier.Value);
_logger.LogInformation("Waiting for DNS propagation for {Domain}...", authz.Identifier.Value);

// Optional: Add a final delay as fallback
await Task.Delay(TimeSpan.FromSeconds(30));
// Wait for DNS propagation with verification
var propagated = await dnsVerifier.WaitForDnsPropagationAsync(
validation.DnsRecordName,
validation.DnsRecordValue,
minimumServers: 3 // Require at least 3 DNS servers to confirm
);

if (!propagated)
{
_logger.LogWarning("DNS record may not have fully propagated for {Domain}. Proceeding anyway...",
authz.Identifier.Value);

// Optional: Add a final delay as fallback
await Task.Delay(TimeSpan.FromSeconds(30));
}
}

// Submit challenge response
Expand Down
26 changes: 25 additions & 1 deletion AcmeCaPlugin/AcmeCaPluginConfig.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -46,7 +46,7 @@ public static Dictionary<string, PropertyConfigInfo> GetPluginAnnotations()
},
["DnsProvider"] = new PropertyConfigInfo()
{
Comments = "DNS Provider to use for ACME DNS-01 challenges (options Google, Cloudflare, AwsRoute53, Azure, Ns1)",
Comments = "DNS Provider to use for ACME DNS-01 challenges (options Google, Cloudflare, AwsRoute53, Azure, Ns1, Infoblox)",
Hidden = false,
DefaultValue = "Google",
Type = "String"
Expand Down Expand Up @@ -130,6 +130,30 @@ public static Dictionary<string, PropertyConfigInfo> GetPluginAnnotations()
Type = "String"
}

//Infoblox DNS
,
["Infoblox_Host"] = new PropertyConfigInfo()
{
Comments = "Infoblox DNS: API URL (e.g., https://infoblox.example.com/wapi/v2.12) only if using Infoblox DNS (Optional)",
Hidden = false,
DefaultValue = "",
Type = "String"
},
["Infoblox_Username"] = new PropertyConfigInfo()
{
Comments = "Infoblox DNS: Username for authentication only if using Infoblox DNS (Optional)",
Hidden = false,
DefaultValue = "",
Type = "String"
},
["Infoblox_Password"] = new PropertyConfigInfo()
{
Comments = "Infoblox DNS: Password for authentication only if using Infoblox DNS (Optional)",
Hidden = true,
DefaultValue = "",
Type = "Secret"
}

};
}

Expand Down
7 changes: 7 additions & 0 deletions AcmeCaPlugin/AcmeClientConfig.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -34,5 +34,12 @@ public class AcmeClientConfig
//IBM NS1 DNS Ns1_ApiKey
public string Ns1_ApiKey { get; set; } = null;

// Infoblox DNS
public string Infoblox_Host { get; set; } = null;
public string Infoblox_Username { get; set; } = null;
public string Infoblox_Password { get; set; } = null;
public string Infoblox_WapiVersion { get; set; } = "2.12";
public bool Infoblox_IgnoreSslErrors { get; set; } = false;

}
}
9 changes: 9 additions & 0 deletions AcmeCaPlugin/Clients/DNS/DnsProviderFactory.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -39,6 +39,15 @@ public static IDnsProvider Create(AcmeClientConfig config, ILogger logger)
return new Ns1DnsProvider(
config.Ns1_ApiKey
);
case "infoblox":
return new InfobloxDnsProvider(
config.Infoblox_Host,
config.Infoblox_Username,
config.Infoblox_Password,
config.Infoblox_WapiVersion,
config.Infoblox_IgnoreSslErrors,
logger
);
default:
throw new NotSupportedException($"DNS provider '{config.DnsProvider}' is not supported.");
}
Expand Down
Loading
Loading