Todo #9200
closedAdd DNS support for Google domain to Acme manager
Added by nivlek trahreg almost 6 years ago. Updated over 1 year ago.
100%
Description
Please add DNS support of Acme manager for use with google domains. I'm using their DDNS feature and can't find them in the list of DNS methods for adding Acme certificate
Files
clipboard-202306101548-jdu2z.png (68 KB) clipboard-202306101548-jdu2z.png | Jordan G, 06/10/2023 08:48 PM |
Updated by Jim Pingle almost 6 years ago
- Category set to ACME
- Assignee set to Jim Pingle
The latest version of the acme.sh script (not the GUI package) has some support but it isn't like the other integrated scripts. It requires separate use of the gcloud CLI command (available via the net/google-cloud-sdk port) to setup credentials outside of the GUI. I'm not sure how viable it will be to add to the GUI, but I'll check into it.
Updated by Don McLean over 5 years ago
I would also like to see Google Domains added into the list of supported validation methods.
Updated by Jeremy 99 over 4 years ago
Google Domains currently does not have any API that allows DNS records to be managed programmatically, so no ACME clients can do "DNS Verification" with Google Domains until Google chooses to add that feature. The only options are to use "HTTP verification" or move your DNS to a different provider that supports ACME, such as Cloudflare.
Updated by Manvir Randhawa over 4 years ago
The question is how is certbot doing it using a plugin called dns-google
It is a python plugin
Updated by Kyle Klouzal almost 3 years ago
Google DNS is different from Google Domains. +1 for Google Domain support here..
Updated by Viktor Gurov almost 3 years ago
Kyle Klouzal wrote in #note-6:
Google DNS is different from Google Domains. +1 for Google Domain support here..
see https://community.letsencrypt.org/t/google-domains-dns-api-support-not-google-cloud-dns/55480:
Thank you for contacting Google Domains. I’m afraid that Google Domains does not yet support API that allows you to automate or modify existing dns records on the domain’s settings.
Updated by Jim Pingle about 2 years ago
- Status changed from New to Needs Patch
- Assignee deleted (
Jim Pingle) - Start date deleted (
12/14/2018)
There is #11931 for Google Cloud, there is nothing we can do got Google Domains. Google needs to come up with an API and/or acme.sh needs to come up with a way to update it. This isn't something we would have any part in implementing. Once there is support upstream we can look into adding it in the package.
Updated by Ryan Keen over 1 year ago
It appears that Google Domains has added support for DNS-01 ACME Challenges using a token generated on Google Domains. More information is available at the link below. Is it possible to revive this request?
Updated by Jim Pingle over 1 year ago
Ryan Keen wrote in #note-9:
It appears that Google Domains has added support for DNS-01 ACME Challenges using a token generated on Google Domains. More information is available at the link below. Is it possible to revive this request?
It's in a "Needs Patch" state -- someone would need to submit pull requests adding support for this function (first to acme.sh and merged upstream, then a separate PR for the pfSense ACME package).
Updated by Nathan Stansell over 1 year ago
Can this be reopened as google now has api access?
https://domains.google/learn/gts-acme/
Updated by Jim Pingle over 1 year ago
Nathan Stansell wrote in #note-11:
Can this be reopened as google now has api access?
https://domains.google/learn/gts-acme/
Is there support for this API in acme.sh upstream?
If not, then it needs to be implemented there first.
Updated by Jonathan Moscardini over 1 year ago
Upstream support has been merged and released: https://github.com/acmesh-official/acme.sh/pull/4542
There is a PR attempting to add it the pfSense ACME package as well: https://github.com/pfsense/FreeBSD-ports/pull/1247
I tried to comment on the PR to suggest satisfying the "Missing Redmine Link" tag with this issue, but haven't seen a response there yet. Not sure if there's something else that needs to be done here.
Updated by Jim Pingle over 1 year ago
- Status changed from Needs Patch to In Progress
- Assignee set to Jim Pingle
Updated by Jim Pingle over 1 year ago
- Status changed from In Progress to Feedback
- % Done changed from 0 to 100
Added in ACME pkg v0.7.4
Updated by Jordan G over 1 year ago
the drop down and token field for Google Domains (DNS API) is present in ACME 0.7.4 - don't have valid credentials I can validate functionality with currently
Updated by Matt D over 1 year ago
I just created a cert using this earlier today, works like a charm! Thank you!