2016-11-11 21:48:00 +07:00
|
|
|
|
[general]
|
2018-10-31 05:54:51 +07:00
|
|
|
|
# DNS interface. Note that systemd-resolved may reserve port 53 on 127.0.0.53
|
|
|
|
|
# In this case acme-dns will error out and you will need to define the listening interface
|
|
|
|
|
# for example: listen = "127.0.0.1:53"
|
2018-12-13 17:19:10 +07:00
|
|
|
|
listen = "127.0.0.1:53"
|
|
|
|
|
# protocol, "both", "both4", "both6", "udp", "udp4", "udp6" or "tcp", "tcp4", "tcp6"
|
|
|
|
|
protocol = "both"
|
2018-05-14 17:42:39 +07:00
|
|
|
|
# domain name to serve the requests off of
|
2016-11-11 21:48:00 +07:00
|
|
|
|
domain = "auth.example.org"
|
2018-05-14 17:42:39 +07:00
|
|
|
|
# zone name server
|
2018-09-28 04:46:07 +07:00
|
|
|
|
nsname = "auth.example.org"
|
2016-12-02 23:14:02 +07:00
|
|
|
|
# admin email address, where @ is substituted with .
|
2016-11-11 21:48:00 +07:00
|
|
|
|
nsadmin = "admin.example.org"
|
2016-12-02 23:14:02 +07:00
|
|
|
|
# predefined records served in addition to the TXT
|
2016-11-15 14:27:34 +07:00
|
|
|
|
records = [
|
2018-09-28 04:46:07 +07:00
|
|
|
|
# domain pointing to the public IP of your acme-dns server
|
|
|
|
|
"auth.example.org. A 198.51.100.1",
|
|
|
|
|
# specify that auth.example.org will resolve any *.auth.example.org records
|
|
|
|
|
"auth.example.org. NS auth.example.org.",
|
2016-11-15 14:27:34 +07:00
|
|
|
|
]
|
2016-11-16 19:56:49 +07:00
|
|
|
|
# debug messages from CORS etc
|
|
|
|
|
debug = false
|
2016-11-15 14:27:34 +07:00
|
|
|
|
|
2016-11-17 22:52:55 +07:00
|
|
|
|
[database]
|
|
|
|
|
# Database engine to use, sqlite3 or postgres
|
|
|
|
|
engine = "sqlite3"
|
|
|
|
|
# Connection string, filename for sqlite3 and postgres://$username:$password@$host/$db_name for postgres
|
2018-01-22 17:35:07 +07:00
|
|
|
|
# Please note that the default Docker image uses path /var/lib/acme-dns/acme-dns.db for sqlite3
|
2019-02-01 14:55:26 +07:00
|
|
|
|
connection = "/var/lib/acme-dns/acme-dns.db"
|
2016-11-17 22:52:55 +07:00
|
|
|
|
# connection = "postgres://user:password@localhost/acmedns_db"
|
2016-11-11 21:48:00 +07:00
|
|
|
|
|
2016-11-13 19:50:44 +07:00
|
|
|
|
[api]
|
2017-11-13 04:40:15 +07:00
|
|
|
|
# listen ip eg. 127.0.0.1
|
2018-01-22 17:35:07 +07:00
|
|
|
|
ip = "0.0.0.0"
|
2018-03-15 04:35:39 +07:00
|
|
|
|
# disable registration endpoint
|
|
|
|
|
disable_registration = false
|
2016-11-13 19:50:44 +07:00
|
|
|
|
# listen port, eg. 443 for default HTTPS
|
2019-10-21 02:52:19 +07:00
|
|
|
|
port = "443"
|
|
|
|
|
# possible values: "letsencrypt", "letsencryptstaging", "cert", "none"
|
|
|
|
|
tls = "letsencryptstaging"
|
2016-11-11 21:48:00 +07:00
|
|
|
|
# only used if tls = "cert"
|
|
|
|
|
tls_cert_privkey = "/etc/tls/example.org/privkey.pem"
|
|
|
|
|
tls_cert_fullchain = "/etc/tls/example.org/fullchain.pem"
|
2018-05-14 17:42:39 +07:00
|
|
|
|
# only used if tls = "letsencrypt"
|
|
|
|
|
acme_cache_dir = "api-certs"
|
2016-11-16 19:56:49 +07:00
|
|
|
|
# CORS AllowOrigins, wildcards can be used
|
|
|
|
|
corsorigins = [
|
2016-11-17 22:52:55 +07:00
|
|
|
|
"*"
|
2016-11-16 19:56:49 +07:00
|
|
|
|
]
|
2016-12-02 22:04:16 +07:00
|
|
|
|
# use HTTP header to get the client ip
|
|
|
|
|
use_header = false
|
|
|
|
|
# header name to pull the ip address / list of ip addresses from
|
|
|
|
|
header_name = "X-Forwarded-For"
|
2016-11-13 19:50:44 +07:00
|
|
|
|
|
|
|
|
|
[logconfig]
|
2016-11-23 21:42:39 +07:00
|
|
|
|
# logging level: "error", "warning", "info" or "debug"
|
2016-11-13 19:50:44 +07:00
|
|
|
|
loglevel = "debug"
|
2016-11-26 20:42:35 +07:00
|
|
|
|
# possible values: stdout, TODO file & integrations
|
2016-11-13 19:50:44 +07:00
|
|
|
|
logtype = "stdout"
|
2016-11-26 20:42:35 +07:00
|
|
|
|
# file path for logfile TODO
|
|
|
|
|
# logfile = "./acme-dns.log"
|
2018-05-14 17:42:39 +07:00
|
|
|
|
# format, either "json" or "text"
|
2016-11-26 20:42:35 +07:00
|
|
|
|
logformat = "text"
|