diff options
author | emilylange <git@emilylange.de> | 2023-05-31 15:08:39 +0200 |
---|---|---|
committer | emilylange <git@emilylange.de> | 2023-05-31 15:08:39 +0200 |
commit | fa21828be54b29fcf1a0e93a3bdd1f7081c680b8 (patch) | |
tree | 5adef3343c8a365af9966d2e3a774205483eed82 /nixos/tests/acme-dns.nix | |
parent | d0af39521bf94f2e3649c1dcc24c3317320ca6a8 (diff) |
nixosTests.acme-dns: init
Diffstat (limited to 'nixos/tests/acme-dns.nix')
-rw-r--r-- | nixos/tests/acme-dns.nix | 50 |
1 files changed, 50 insertions, 0 deletions
diff --git a/nixos/tests/acme-dns.nix b/nixos/tests/acme-dns.nix new file mode 100644 index 0000000000000..92d9498fe714e --- /dev/null +++ b/nixos/tests/acme-dns.nix @@ -0,0 +1,50 @@ +import ./make-test-python.nix ({ ... }: { + name = "acme-dns"; + + nodes.machine = { pkgs, ... }: { + services.acme-dns = { + enable = true; + settings = { + general = rec { + domain = "acme-dns.home.arpa"; + nsname = domain; + nsadmin = "admin.home.arpa"; + records = [ + "${domain}. A 127.0.0.1" + "${domain}. AAAA ::1" + "${domain}. NS ${domain}." + ]; + }; + logconfig.loglevel = "debug"; + }; + }; + environment.systemPackages = with pkgs; [ curl bind ]; + }; + + testScript = '' + import json + + machine.wait_for_unit("acme-dns.service") + machine.wait_for_open_port(53) # dns + machine.wait_for_open_port(8080) # http api + + result = machine.succeed("curl --fail -X POST http://localhost:8080/register") + print(result) + + registration = json.loads(result) + + machine.succeed(f'dig -t TXT @localhost {registration["fulldomain"]} | grep "SOA" | grep "admin.home.arpa"') + + # acme-dns exspects a TXT value string length of exactly 43 chars + txt = "___dummy_validation_token_for_txt_record___" + + machine.succeed( + "curl --fail -X POST http://localhost:8080/update " + + f' -H "X-Api-User: {registration["username"]}"' + + f' -H "X-Api-Key: {registration["password"]}"' + + f' -d \'{{"subdomain":"{registration["subdomain"]}", "txt":"{txt}"}}\''' + ) + + assert txt in machine.succeed(f'dig -t TXT +short @localhost {registration["fulldomain"]}') + ''; +}) |