mirrors/maddy
1
0
Fork 0
mirror of https://github.com/foxcpp/maddy.git synced 2025-04-05 14:07:38 +03:00
Code Issues Projects Releases Packages Wiki Activity

tls/acme: Add support for DNS-01 domain delegation

Browse source 
See #588.
This commit is contained in:
fox.cpp 2023-05-29 22:19:01 +03:00
parent 6d5cd3b618
commit de756c8dc5
No known key found for this signature in database
GPG key ID: 5B991F6215D2FCC0
2 changed files with 30 additions and 11 deletions
Download patch file Download diff file Expand all files Collapse all files

17
docs/reference/tls-acme.md
View file

@ -20,7 +20,13 @@ smtp tcp://127.0.0.1:25 {
You can also use a global `tls` directive to use automatically
obtained certificates for all endpoints:
```
tls &local_tls
tls {
loader acme {
email maddy-acme@example.org
agreed
challenge dns-01
}
}
```
Currently the only supported challenge is dns-01 one therefore
@ -87,6 +93,15 @@ back to the one configured via 'ca' option.
This avoids rate limit issues with production CA.
**Syntax:** override\_domain _domain_ <br>
**Default:** not set
Override the domain to set the TXT record on for DNS-01 challenge.
This is to delegate the challenge to a different domain.
See https://www.eff.org/deeplinks/2018/02/technical-deep-dive-securing-automation-acme-dns-challenge-validation
for explanation why this might be useful.
**Syntax:** email _str_ <br>
**Default:** not set