Certbot DNS authenticator for Google Domains
Project description
certbot-dns-google-domains
A Certbot DNS Authenticator for Google Domains.
Named Arguments
Option | Description |
---|---|
--authenticator dns-google-domains |
Select this authenticator plugin. |
--dns-google-domains-credentials FILE |
Path to the INI file with credentials. |
--dns-google-domains-propagation-seconds INT |
How long to wait for DNS changes to propagate. Default = 30s. |
--dns-google-domains-zone STRING |
What the registered domain on Google domains is. Default: Retreived from either the credentials file, or by using the public suffix list to guess. |
Credentials
The credentials file includes the access token for Google Domains.
dns_google_domains_access_token = abcdef
Optionally, you can also define the zone in this file.
dns_google_domains_access_token = abcdef
dns_google_domains_zone = example.com
Usage Example
Docker / Podman
docker run \
-v '/var/lib/letsencrypt:/var/lib/letsencrypt' \
-v '/etc/letsencrypt:/etc/letsencrypt' \
--cap-drop=all \
ghcr.io/aaomidi/certbot-dns-google-domains:latest \
certbot certonly \
--authenticator 'dns-google-domains' \
--dns-google-domains-credentials '/var/lib/letsencrypt/dns_google_domains_credentials.ini' \
--server 'https://acme-v02.api.letsencrypt.org/directory' \
--dns-google-domains-zone 'example.com' \
-d 'a.example.com'
Notes:
-v '/var/lib/letsencrypt:/var/lib/letsencrypt'
is where certbot by default outputs certificates, keys, and account information.-v '/etc/letsencrypt:/etc/letsencrypt'
is where certbot keeps its configuration.--authenticator 'dns-google-domains'
uses the dns-google-domains authenticator.--dns-google-domains-credentials '/var/lib/letsencrypt/dns_google_domains_credentials.ini'
is the path to the credentials file.--dns-google-domains-zone 'example.com'
is the main domain you have registered with Google domains. This is optional.
Python
You can get the certbot-dns-google-domains
package from PyPi:
pip3 install certbot certbot-dns-google-domains
certbot certonly \
--authenticator 'dns-google-domains' \
--dns-google-domains-credentials '/var/lib/letsencrypt/dns_google_domains_credentials.ini' \
--server 'https://acme-v02.api.letsencrypt.org/directory' \
--dns-google-domains-zone 'example.com' \
-d 'a.example.com'
Notes on zone resolution
Google domains does not have an API to get the zone for a domain from a subdomain. This plugin uses the following logic to determine the zone:
- If the zone is provided in the
--dns-google-domains-zone
argument, use that. - If the zone is provided in the credentials file, use that.
- Use the public suffix list to determine the zone.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Close
Hashes for certbot_dns_google_domains-0.1.5.tar.gz
Algorithm | Hash digest | |
---|---|---|
SHA256 | c3c7b53e392496c1f45bb9dbf8b833e422a443ea9ee31d7f9ce5c2f0837911e5 |
|
MD5 | 963eb66e98befe6323a715f6deec506b |
|
BLAKE2b-256 | 8de9eec7d9239e94e708d1a208f89ffd3a1f8fefd3e3ab7bb0a995663646c369 |
Close
Hashes for certbot_dns_google_domains-0.1.5-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 4d1d571db989d7646bcccf9c0b0864bd918d1f0cce5c3283caa82a154758d213 |
|
MD5 | e2cd37bb4bf65472fab066241fa5ecf7 |
|
BLAKE2b-256 | 3029e3838ddc97279137378713dcb8ca60bd494c5e3c18694f7afcc21e2b6409 |