Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/letsencrypt/challtestsrv

Small TEST-ONLY server for mock DNS & responding to HTTP-01, DNS-01, and TLS-ALPN-01 ACME challenges.
https://github.com/letsencrypt/challtestsrv

Last synced: 6 days ago
JSON representation

Small TEST-ONLY server for mock DNS & responding to HTTP-01, DNS-01, and TLS-ALPN-01 ACME challenges.

Host: GitHub
URL: https://github.com/letsencrypt/challtestsrv
Owner: letsencrypt
License: mpl-2.0
Created: 2018-12-05T17:27:18.000Z (almost 6 years ago)
Default Branch: main
Last Pushed: 2023-12-06T18:45:07.000Z (11 months ago)
Last Synced: 2024-11-04T16:44:15.762Z (9 days ago)
Language: Go
Size: 1.69 MB
Stars: 19
Watchers: 7
Forks: 21
Open Issues: 5
Metadata Files:
- Readme: README.md
- License: LICENSE
- Code of conduct: CODE_OF_CONDUCT.md

Awesome Lists containing this project

README

        # Challenge Test Server

[![Build Status](https://travis-ci.org/letsencrypt/challtestsrv.svg?branch=master)](https://travis-ci.org/letsencrypt/challtestsrv)

[![Coverage Status](https://coveralls.io/repos/github/letsencrypt/challtestsrv/badge.svg)](https://coveralls.io/github/letsencrypt/challtestsrv)

[![Go Report Card](https://goreportcard.com/badge/github.com/letsencrypt/challtestsrv)](https://goreportcard.com/report/github.com/letsencrypt/challtestsrv)

[![GolangCI](https://golangci.com/badges/github.com/letsencrypt/challtestsrv.svg)](https://golangci.com/r/github.com/letsencrypt/challtestsrv)

The `challtestsrv` package offers a library that can be used by test

code to respond to HTTP-01, DNS-01, and TLS-ALPN-01 ACME challenges. The

`challtestsrv` package can also be used as a mock DNS server letting

developers mock `A`, `AAAA`, `CNAME`, and `CAA` DNS data for specific hostnames.

The mock server will resolve up to one level of `CNAME` aliasing for accepted

DNS request types.

**Important note: The `challtestsrv` library is for TEST USAGE

ONLY. It is trivially insecure, offering no authentication. Only use

`challtestsrv` in a controlled test environment.**

For example this package is used by the Boulder

[`load-generator`](https://github.com/letsencrypt/boulder/tree/9e39680e3f78c410e2d780a7badfe200a31698eb/test/load-generator)

command to manage its own in-process HTTP-01 challenge server.

### Usage

Create a challenge server responding to HTTP-01 challenges on ":8888" and

DNS-01 challenges on ":9999" and "10.0.0.1:9998":

```

  import "github.com/letsencrypt/pebble/challtestsrv"

  challSrv, err := challtestsrv.New(challsrv.Config{

    HTTPOneAddr: []string{":8888"},

    DNSOneAddr: []string{":9999", "10.0.0.1:9998"},

  })

  if err != nil {

    panic(err)

  }

```

Run the Challenge server and subservers:

```

  // Start the Challenge server in its own Go routine

  go challSrv.Run()

```

Add an HTTP-01 response for the token `"aaa"` and the value `"bbb"`, defer

cleaning it up again:

```

  challSrv.AddHTTPOneChallenge("aaa", "bbb")

  defer challSrv.DeleteHTTPOneChallenge("aaa")

```

Add a DNS-01 TXT response for the host `"_acme-challenge.example.com."` and the

value `"bbb"`, defer cleaning it up again:

```

  challSrv.AddDNSOneChallenge("_acme-challenge.example.com.", "bbb")

  defer challSrv.DeleteHTTPOneChallenge("_acme-challenge.example.com.")

```

Get the history of HTTP requests processed by the challenge server for the host

"example.com":

```

requestHistory := challSrv.RequestHistory("example.com", challtestsrv.HTTPRequestEventType)

```

Clear the history of HTTP requests processed by the challenge server for the

host "example.com":

```

challSrv.ClearRequestHistory("example.com", challtestsrv.HTTPRequestEventType)

```

Stop the Challenge server and subservers:

```

  // Shutdown the Challenge server

  challSrv.Shutdown()

```

For more information on the package API see Godocs and the associated package

sourcecode.