acme.sh icon indicating copy to clipboard operation
acme.sh copied to clipboard

Published 20 hours ago verified publisher icon acmesh-official

dnsapi for google domains?

Open greyltc opened this issue 2 years ago • 7 comments

Would it be possible to add support google domains dnsapi?

greyltc avatar May 27 '22 07:05 greyltc

Is this what you want ? https://github.com/acmesh-official/acme.sh/wiki/dnsapi#49-use-google-cloud-dns-api-to-automatically-issue-cert

Neilpang avatar May 27 '22 08:05 Neilpang

That seems to be some google cloud platform related thing. I'm asking about domains managed via domains.google.com

greyltc avatar May 29 '22 08:05 greyltc

That seems to be some google cloud platform related thing. I'm asking about domains managed via domains.google.com

This has been asked a number of times in other contexts, and the Google product naming adds to the confusion. Google Domains is a registrar with minimal DNS server functionality, and Google Cloud DNS is a full function DNS solution. Google Domains does not provide any formal published DNS management API (with the exception of a limited ddns api) although Google Domains does allow you to manage DNS records through a web browser (for some small (website-mostly?) properties that is likely sufficient). It is possible to use Google Domains as your registrar, and another full featured (API providing) DNS service (including Google Cloud DNS) as your DNS provider. Support for standalone Google Domains with the acme dnsapi would likely require someone to have to reverse engineer the existing web browser management, and as far as I know no one has done the research/work to determine how to accomplish that (although there are many that seem to have the same itch, no one seems to be scratching).

garybuhrmaster avatar Jun 02 '22 17:06 garybuhrmaster

Seems Google Domains has API key generation for ACME DNS challenge, and has a link to this project: https://github.com/aaomidi/certbot-dns-google-domains as a certbot plugin. Hopefully this means that it could be added?

Also, API documentation on the Google Domains ACME DNS API: https://developers.google.com/domains/acme-dns/reference/rest

esand avatar Mar 17 '23 04:03 esand

is this what you want ?

https://github.com/acmesh-official/acme.sh/pull/4546

Neilpang avatar Mar 17 '23 05:03 Neilpang

is this what you want ?

#4546

Yes.Google domain now provides API key generation for the ACME domain name challenge.

nowanti avatar Mar 21 '23 01:03 nowanti

Can confirm it works perfectly.

Just get your GOOGLEDOMAINS_ACCESS_TOKEN from Google Domains website (Security > ACME DNS API section). Then follow the simple instructions at https://github.com/acmesh-official/acme.sh/wiki/dnsapi2#157-use-google-domains-dns-api

Fabulous!

chichilatte avatar Jun 03 '23 21:06 chichilatte