Initial commit

Author: MaxAnderson95

.devcontainer/devcontainer.json

@@ -0,0 +1,46 @@
+// For format details, see https://aka.ms/devcontainer.json. For config options, see the
+// README at: https://github.com/devcontainers/templates/tree/main/src/python
+{
+	"name": "Python 3",
+	"image": "mcr.microsoft.com/devcontainers/python:3.10",
+
+	// Configure tool-specific properties.
+	"customizations": {
+		// Configure properties specific to VS Code.
+		"vscode": {
+			// Set *default* container specific settings.json values on container create.
+			"settings": { 
+				"python.defaultInterpreterPath": "/usr/local/bin/python",
+				"python.linting.enabled": true,
+				"python.linting.pylintEnabled": true,
+				"python.formatting.autopep8Path": "/usr/local/py-utils/bin/autopep8",
+				"python.formatting.blackPath": "/usr/local/py-utils/bin/black",
+				"python.formatting.yapfPath": "/usr/local/py-utils/bin/yapf",
+				"python.linting.banditPath": "/usr/local/py-utils/bin/bandit",
+				"python.linting.flake8Path": "/usr/local/py-utils/bin/flake8",
+				"python.linting.mypyPath": "/usr/local/py-utils/bin/mypy",
+				"python.linting.pycodestylePath": "/usr/local/py-utils/bin/pycodestyle",
+				"python.linting.pydocstylePath": "/usr/local/py-utils/bin/pydocstyle",
+				"python.linting.pylintPath": "/usr/local/py-utils/bin/pylint"
+			},
+			
+			// Add the IDs of extensions you want installed when the container is created.
+			"extensions": [
+				"ms-python.python",
+				"ms-python.vscode-pylance"
+			]
+		}
+	},
+
+	// Use 'forwardPorts' to make a list of ports inside the container available locally.
+	// "forwardPorts": [],
+
+	// Use 'postCreateCommand' to run commands after the container is created.
+	"postCreateCommand": "pip3 install --user -r requirements.txt",
+
+	// Comment out to connect as root instead. More info: https://aka.ms/vscode-remote/containers/non-root.
+	"remoteUser": "vscode",
+	"features": {
+		"git": "latest"
+	}
+}

.github/workflows/main.yml

@@ -0,0 +1,34 @@
+name: ci
+
+on:
+  workflow_dispatch:
+  push:
+    paths:
+      - 'app/**'
+    branches:
+      - 'main'
+
+jobs:
+  docker:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v3
+      - name: Set up QEMU
+        uses: docker/setup-qemu-action@v2
+        with:
+          platforms: 'arm64'
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v2
+      - name: Login to Docker Hub
+        uses: docker/login-action@v2
+        with:
+          username: ${{ secrets.DOCKERHUB_USERNAME }}
+          password: ${{ secrets.DOCKERHUB_TOKEN }}
+      - name: Build and push
+        uses: docker/build-push-action@v3
+        with:
+          context: .
+          platforms: "linux/amd64,linux/arm64"
+          push: true
+          tags: maxanderson95/digitalocean-dyndns-updater:latest, maxanderson95/digitalocean-dyndns-updater:v1.${{github.run_number}}

.gitignore

@@ -0,0 +1,135 @@
+settings.toml
+.secrets.toml
+
+# Byte-compiled / optimized / DLL files
+__pycache__/
+*.py[cod]
+*$py.class
+
+# C extensions
+*.so
+
+# Distribution / packaging
+.Python
+build/
+develop-eggs/
+dist/
+downloads/
+eggs/
+.eggs/
+lib/
+lib64/
+parts/
+sdist/
+var/
+wheels/
+pip-wheel-metadata/
+share/python-wheels/
+*.egg-info/
+.installed.cfg
+*.egg
+MANIFEST
+
+# PyInstaller
+#  Usually these files are written by a python script from a template
+#  before PyInstaller builds the exe, so as to inject date/other infos into it.
+*.manifest
+*.spec
+
+# Installer logs
+pip-log.txt
+pip-delete-this-directory.txt
+
+# Unit test / coverage reports
+htmlcov/
+.tox/
+.nox/
+.coverage
+.coverage.*
+.cache
+nosetests.xml
+coverage.xml
+*.cover
+*.py,cover
+.hypothesis/
+.pytest_cache/
+
+# Translations
+*.mo
+*.pot
+
+# Django stuff:
+*.log
+local_settings.py
+db.sqlite3
+db.sqlite3-journal
+
+# Flask stuff:
+instance/
+.webassets-cache
+
+# Scrapy stuff:
+.scrapy
+
+# Sphinx documentation
+docs/_build/
+
+# PyBuilder
+target/
+
+# Jupyter Notebook
+.ipynb_checkpoints
+
+# IPython
+profile_default/
+ipython_config.py
+
+# pyenv
+.python-version
+
+# pipenv
+#   According to pypa/pipenv#598, it is recommended to include Pipfile.lock in version control.
+#   However, in case of collaboration, if having platform-specific dependencies or dependencies
+#   having no cross-platform support, pipenv may install dependencies that don't work, or not
+#   install all needed dependencies.
+#Pipfile.lock
+
+# PEP 582; used by e.g. github.com/David-OConnor/pyflow
+__pypackages__/
+
+# Celery stuff
+celerybeat-schedule
+celerybeat.pid
+
+# SageMath parsed files
+*.sage.py
+
+# Environments
+.env
+.venv
+env/
+venv/
+ENV/
+env.bak/
+venv.bak/
+
+# Spyder project settings
+.spyderproject
+.spyproject
+
+# Rope project settings
+.ropeproject
+
+# mkdocs documentation
+/site
+
+# mypy
+.mypy_cache/
+.dmypy.json
+dmypy.json
+
+# Pyre type checker
+.pyre/
+
+# Ignore dynaconf secret files
+.secrets.*

.vscode/launch.json

@@ -0,0 +1,24 @@
+{
+    // Use IntelliSense to learn about possible attributes.
+    // Hover to view descriptions of existing attributes.
+    // For more information, visit: https://go.microsoft.com/fwlink/?linkid=830387
+    "version": "0.2.0",
+    "configurations": [
+        {
+            "name": "Python: Current File",
+            "type": "python",
+            "request": "launch",
+            "program": "main.py",
+            "cwd": "${workspaceFolder}/app",
+            "console": "integratedTerminal",
+            "justMyCode": true,
+            "env": {
+                "PYTHONDONTWRITEBYTECODE": "1",
+                "DIGITALOCEAN_TOKEN": "",
+                "RECORD_NAME": "example4",
+                "ZONE_NAME": "maxanderson.tech",
+                "LOG_LEVEL": "DEBUG"
+            }
+        }
+    ]
+}

.vscode/settings.json

@@ -0,0 +1,6 @@
+{
+    "python.linting.enabled": false,
+    "vs-kubernetes": {
+        "disable-linters": ["resource-limits"],
+    },
+}

Dockerfile

@@ -0,0 +1,6 @@
+FROM python:3.11-alpine
+COPY ./requirements.txt /app/requirements.txt
+RUN pip install --no-cache-dir --upgrade -r /app/requirements.txt
+COPY ./app /app
+WORKDIR /app
+CMD ["python", "main.py"]

README.md

@@ -0,0 +1,58 @@
+# DigitalOcean Dynamic DNS Updater
+This is a Python script that determines your public egress IP address, then calls to the DigitalOcean API to either create or update a record with this IP.
+
+This script is designed to run, perform the action, and then shutdown. It doesn't run as a daemon. The idea is to run this script (or ideally container image) on a system that allows for scheduling (such as a Kubernetes cron job).
+
+## Configuration
+To configure the script, set the following environment variables prior to execution:
+
+|Name|Description|Required|Default|Example|
+|---|---|---|---|---|
+|DIGITALOCEAN_TOKEN|Must have read and write access|*true*||*N/A*|
+|RECORD_NAME|The name of the DNS record to update|*true*||server01|
+|ZONE_NAME|The name of the zone where the record should be created or updated|*true*||example.com|
+|TTL|The time to live of the DNS record|*false*|3600|60|
+|LOG_LEVEL|The log level of the script|*false*|INFO|DEBUG|
+
+## Docker Image
+A docker image which runs this script on startup has been published to the [DockerHub](https://hub.docker.com/repository/docker/maxanderson95/digitalocean-dyndns-updater).
+
+## Run as a Kubernetes Cron Job
+First create a secret that stores the DigitalOcean token
+```yaml
+apiVersion: v1
+kind: Secret
+metadata:
+  name: digitalocean-token
+type: Opaque
+data:
+  token: <Base64 Encoded Token>
+```
+Then create a CronJob that runs the container image (for example) once per hour.
+```yaml
+apiVersion: batch/v1
+kind: CronJob
+metadata:
+  name: dyndns
+spec:
+  schedule: "0 * * * *"
+  jobTemplate:
+    spec:
+      template:
+        spec:
+          containers:
+          - name: dyndns-updater
+            image: maxanderson95/digitalocean-dyndns-updater:latest
+            imagePullPolicy: IfNotPresent
+            env:
+              - name: DIGITALOCEAN_TOKEN
+                valueFrom:
+                  secretKeyRef:
+                    name: digitalocean-token
+                    key: token
+              - name: RECORD_NAME
+                value: "server01"
+              - name: ZONE_NAME
+                value: "example.com"
+          restartPolicy: OnFailure
+```

app/config.py

@@ -0,0 +1,16 @@
+import logging
+from dynaconf import Dynaconf, Validator
+
+settings = Dynaconf(
+    envvar_prefix=False,
+    validators=[
+        Validator("DIGITALOCEAN_TOKEN", must_exist=True),
+        Validator("RECORD_NAME", must_exist=True),
+        Validator("ZONE_NAME", must_exist=True),
+        Validator("TTL", default=3600, must_exist=True,
+                  is_type_of=int, gte=30),
+        Validator("LOG_LEVEL", default=logging.INFO)
+    ]
+)
+
+settings.validators.validate_all()

app/ip.py

@@ -0,0 +1,40 @@
+import requests
+import random
+from logger import configure_logging
+
+logger = configure_logging(__name__)
+
+urls = [
+    "https://ifconfig.io",
+    "https://ipconfig.io",
+    "https://ifconfig.co"
+]
+
+headers = {
+    'User-Agent': 'curl'
+}
+
+
+def get_public_ip() -> str:
+    # Randomize the url list so that it doesn't use the same service every time
+    random.shuffle(urls)
+    last_item = urls[-1]
+
+    for url in urls:
+        try:
+            logger.debug(f"Sending request for public IP to {url}")
+            response = requests.get(url, headers=headers)
+            if response.status_code == 200:
+                ip = response.text.strip()
+                logger.info(f"Public IP address discovered: {ip}")
+                return ip
+        except requests.exceptions.RequestException as e:
+            logger.debug(f"Failed to retreive IP from url {url}")
+            if url != last_item:
+                logger.debug("Trying next available IP lookup service.")
+                continue
+            else:
+                logger.exception(
+                    f"Failed to retreive public IP from any of the available lookup services")
+                raise Exception(
+                    f"Failed to retreive public IP from any of the available lookup services") from e

app/logger.py

@@ -0,0 +1,16 @@
+import logging
+import time
+from config import settings
+
+
+def configure_logging(name: str) -> logging.Logger:
+    logger = logging.getLogger(name)
+    handler = logging.StreamHandler()
+    formatter = logging.Formatter(
+        '[%(asctime)s][%(name)-10s][%(levelname)-7s] %(message)s')
+    handler.setFormatter(formatter)
+    logging.Formatter.converter = time.gmtime
+    logger.addHandler(handler)
+    logger.setLevel(settings.LOG_LEVEL)
+
+    return logger