go-acme
diff --git a/‎providers/dns/corenetworks/corenetworks.go
Lines changed: 172 additions & 0 deletions b/‎providers/dns/corenetworks/corenetworks.go
Lines changed: 172 additions & 0 deletions
diff --git a/‎providers/dns/corenetworks/corenetworks.toml
Lines changed: 24 additions & 0 deletions b/‎providers/dns/corenetworks/corenetworks.toml
Lines changed: 24 additions & 0 deletions
diff --git a/‎providers/dns/corenetworks/corenetworks_test.go
Lines changed: 132 additions & 0 deletions b/‎providers/dns/corenetworks/corenetworks_test.go
Lines changed: 132 additions & 0 deletions
@@ -0,0 +1,172 @@
+package corenetworks
+
+import (
+	"context"
+	"errors"
+	"fmt"
+	"net/http"
+	"time"
+
+	"github.com/go-acme/lego/v4/challenge/dns01"
+	"github.com/go-acme/lego/v4/platform/config/env"
+	"github.com/go-acme/lego/v4/providers/dns/corenetworks/internal"
+)
+
+// Environment variables names.
+const (
+	envNamespace = "CORENETWORKS_"
+
+	EnvLogin    = envNamespace + "LOGIN"
+	EnvPassword = envNamespace + "PASSWORD"
+
+	EnvTTL                = envNamespace + "TTL"
+	EnvPropagationTimeout = envNamespace + "PROPAGATION_TIMEOUT"
+	EnvPollingInterval    = envNamespace + "POLLING_INTERVAL"
+	EnvHTTPTimeout        = envNamespace + "HTTP_TIMEOUT"
+)
+
+// Config is used to configure the creation of the DNSProvider.
+type Config struct {
+	Login              string
+	Password           string
+	PropagationTimeout time.Duration
+	PollingInterval    time.Duration
+	TTL                int
+	HTTPClient         *http.Client
+}
+
+// NewDefaultConfig returns a default configuration for the DNSProvider.
+func NewDefaultConfig() *Config {
+	return &Config{
+		TTL:                env.GetOrDefaultInt(EnvTTL, 3600),
+		PropagationTimeout: env.GetOrDefaultSecond(EnvPropagationTimeout, dns01.DefaultPropagationTimeout),
+		PollingInterval:    env.GetOrDefaultSecond(EnvPollingInterval, dns01.DefaultPollingInterval),
+		HTTPClient: &http.Client{
+			Timeout: env.GetOrDefaultSecond(EnvHTTPTimeout, 30*time.Second),
+		},
+	}
+}
+
+// DNSProvider implements the challenge.Provider interface.
+type DNSProvider struct {
+	config *Config
+	client *internal.Client
+}
+
+// NewDNSProvider returns a DNSProvider instance configured for Core-Networks.
+// Credentials must be passed in the environment variables: CORENETWORKS_LOGIN, CORENETWORKS_PASSWORD.
+func NewDNSProvider() (*DNSProvider, error) {
+	values, err := env.Get(EnvLogin, EnvPassword)
+	if err != nil {
+		return nil, fmt.Errorf("corenetworks: %w", err)
+	}
+
+	config := NewDefaultConfig()
+	config.Login = values[EnvLogin]
+	config.Password = values[EnvPassword]
+
+	return NewDNSProviderConfig(config)
+}
+
+// NewDNSProviderConfig return a DNSProvider instance configured for Bluecat DNS.
+func NewDNSProviderConfig(config *Config) (*DNSProvider, error) {
+	if config == nil {
+		return nil, errors.New("corenetworks: the configuration of the DNS provider is nil")
+	}
+
+	if config.Login == "" || config.Password == "" {
+		return nil, errors.New("corenetworks: credentials missing")
+	}
+
+	client := internal.NewClient(config.Login, config.Password)
+
+	if config.HTTPClient != nil {
+		client.HTTPClient = config.HTTPClient
+	}
+
+	return &DNSProvider{config: config, client: client}, nil
+}
+
+// Timeout returns the timeout and interval to use when checking for DNS propagation.
+// Adjusting here to cope with spikes in propagation times.
+func (d *DNSProvider) Timeout() (timeout, interval time.Duration) {
+	return d.config.PropagationTimeout, d.config.PollingInterval
+}
+
+// Present creates a TXT record using the specified parameters.
+func (d *DNSProvider) Present(domain, token, keyAuth string) error {
+	info := dns01.GetChallengeInfo(domain, keyAuth)
+
+	ctx, err := d.client.CreateAuthenticatedContext(context.Background())
+	if err != nil {
+		return fmt.Errorf("create authentication token: %w", err)
+	}
+
+	zone, err := dns01.FindZoneByFqdn(info.EffectiveFQDN)
+	if err != nil {
+		return fmt.Errorf("corenetworks: could not find zone for domain %q (%s): %w", domain, info.EffectiveFQDN, err)
+	}
+
+	subDomain, err := dns01.ExtractSubDomain(info.EffectiveFQDN, zone)
+	if err != nil {
+		return fmt.Errorf("corenetworks: %w", err)
+	}
+
+	record := internal.Record{
+		Name: subDomain,
+		TTL:  d.config.TTL,
+		Type: "TXT",
+		Data: info.Value,
+	}
+
+	err = d.client.AddRecord(ctx, zone, record)
+	if err != nil {
+		return fmt.Errorf("corenetworks: add record:%w", err)
+	}
+
+	err = d.client.CommitRecords(ctx, zone)
+	if err != nil {
+		return fmt.Errorf("corenetworks: commit records: %w", err)
+	}
+
+	return nil
+}
+
+// CleanUp removes the TXT record matching the specified parameters.
+func (d *DNSProvider) CleanUp(domain, token, keyAuth string) error {
+	info := dns01.GetChallengeInfo(domain, keyAuth)
+
+	ctx, err := d.client.CreateAuthenticatedContext(context.Background())
+	if err != nil {
+		return fmt.Errorf("create authentication token: %w", err)
+	}
+
+	zone, err := dns01.FindZoneByFqdn(info.EffectiveFQDN)
+	if err != nil {
+		return fmt.Errorf("corenetworks: could not find zone for domain %q (%s): %w", domain, info.EffectiveFQDN, err)
+	}
+
+	subDomain, err := dns01.ExtractSubDomain(info.EffectiveFQDN, zone)
+	if err != nil {
+		return fmt.Errorf("corenetworks: %w", err)
+	}
+
+	record := internal.Record{
+		Name: subDomain,
+		TTL:  d.config.TTL,
+		Type: "TXT",
+		Data: info.Value,
+	}
+
+	err = d.client.DeleteRecords(ctx, zone, record)
+	if err != nil {
+		return fmt.Errorf("corenetworks: delete records: %w", err)
+	}
+
+	err = d.client.CommitRecords(ctx, zone)
+	if err != nil {
+		return fmt.Errorf("corenetworks: commit records: %w", err)
+	}
+
+	return nil
+}
@@ -0,0 +1,24 @@
+Name = "Core-Networks"
+Description = ''''''
+URL = "https://www.core-networks.de/"
+Code = "corenetworks"
+Since = "v4.16.0"
+
+Example = '''
+CORENETWORKS_LOGIN="xxxx" \
+CORENETWORKS_PASSWORD="yyyy" \
+lego --email myemail@example.com --dns corenetworks --domains my.example.org run
+'''
+
+[Configuration]
+  [Configuration.Credentials]
+    CORENETWORKS_LOGIN = "The username of the API account"
+    CORENETWORKS_PASSWORD = "The password"
+  [Configuration.Additional]
+    CORENETWORKS_POLLING_INTERVAL = "Time between DNS propagation check"
+    CORENETWORKS_PROPAGATION_TIMEOUT = "Maximum waiting time for DNS propagation"
+    CORENETWORKS_TTL = "The TTL of the TXT record used for the DNS challenge"
+    CORENETWORKS_HTTP_TIMEOUT = "API request timeout"
+
+[Links]
+  API = "https://beta.api.core-networks.de/doc/"
@@ -0,0 +1,132 @@
+package corenetworks
+
+import (
+	"testing"
+
+	"github.com/go-acme/lego/v4/platform/tester"
+	"github.com/stretchr/testify/require"
+)
+
+const envDomain = envNamespace + "DOMAIN"
+
+var envTest = tester.NewEnvTest(EnvLogin, EnvPassword).WithDomain(envDomain)
+
+func TestNewDNSProvider(t *testing.T) {
+	testCases := []struct {
+		desc     string
+		envVars  map[string]string
+		expected string
+	}{
+		{
+			desc: "success",
+			envVars: map[string]string{
+				EnvLogin:    "user",
+				EnvPassword: "secret",
+			},
+		},
+		{
+			desc: "missing login",
+			envVars: map[string]string{
+				EnvPassword: "secret",
+			},
+			expected: "corenetworks: some credentials information are missing: CORENETWORKS_LOGIN",
+		},
+		{
+			desc: "missing password",
+			envVars: map[string]string{
+				EnvLogin: "user",
+			},
+			expected: "corenetworks: some credentials information are missing: CORENETWORKS_PASSWORD",
+		},
+	}
+
+	for _, test := range testCases {
+		t.Run(test.desc, func(t *testing.T) {
+			defer envTest.RestoreEnv()
+			envTest.ClearEnv()
+
+			envTest.Apply(test.envVars)
+
+			p, err := NewDNSProvider()
+
+			if test.expected == "" {
+				require.NoError(t, err)
+				require.NotNil(t, p)
+				require.NotNil(t, p.config)
+				require.NotNil(t, p.client)
+			} else {
+				require.EqualError(t, err, test.expected)
+			}
+		})
+	}
+}
+
+func TestNewDNSProviderConfig(t *testing.T) {
+	testCases := []struct {
+		desc     string
+		login    string
+		password string
+		expected string
+	}{
+		{
+			desc:     "success",
+			login:    "user",
+			password: "secret",
+		},
+		{
+			desc:     "missing login",
+			password: "secret",
+			expected: "corenetworks: credentials missing",
+		},
+		{
+			desc:     "missing password",
+			login:    "user",
+			expected: "corenetworks: credentials missing",
+		},
+	}
+
+	for _, test := range testCases {
+		t.Run(test.desc, func(t *testing.T) {
+			config := NewDefaultConfig()
+			config.Login = test.login
+			config.Password = test.password
+
+			p, err := NewDNSProviderConfig(config)
+
+			if test.expected == "" {
+				require.NoError(t, err)
+				require.NotNil(t, p)
+				require.NotNil(t, p.config)
+				require.NotNil(t, p.client)
+			} else {
+				require.EqualError(t, err, test.expected)
+			}
+		})
+	}
+}
+
+func TestLivePresent(t *testing.T) {
+	if !envTest.IsLiveTest() {
+		t.Skip("skipping live test")
+	}
+
+	envTest.RestoreEnv()
+	provider, err := NewDNSProvider()
+	require.NoError(t, err)
+
+	err = provider.Present(envTest.GetDomain(), "", "123d==")
+	require.NoError(t, err)
+}
+
+func TestLiveCleanUp(t *testing.T) {
+	if !envTest.IsLiveTest() {
+		t.Skip("skipping live test")
+	}
+
+	envTest.RestoreEnv()
+	provider, err := NewDNSProvider()
+	require.NoError(t, err)
+
+	err = provider.CleanUp(envTest.GetDomain(), "", "123d==")
+	require.NoError(t, err)
+}