Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Lack of overview on the level of spec support by the DNS provider #81

Open
pawel-kow opened this issue Nov 14, 2023 · 2 comments
Open

Lack of overview on the level of spec support by the DNS provider #81

pawel-kow opened this issue Nov 14, 2023 · 2 comments
Labels
Prio Issues with priority to talk about question

Comments

@pawel-kow
Copy link
Member

The spec has several optional features, also several versions with added functionality.
Right now it's hard for Service Provider to figure out what level of support a DNS provider offers.
@pawel-kow pawel-kow changed the title Lack of overview on the level of spec supprot by the DNS provider Lack of overview on the level of spec support by the DNS provider Feb 21, 2024
@pawel-kow pawel-kow added the Prio Issues with priority to talk about label Mar 12, 2024
@kerolasa
Copy link
Collaborator

kerolasa commented Apr 9, 2024

The issue feels similar with 'how to find DNS provider contact info'
question recently. Perhaps the DNS provider json should have a link to
documentation, something like this:

{
    "providerId": "cloudflare.com",
    "providerName": "cloudflare",
    "providerDisplayName": "Cloudflare",
    "urlSyncUX": "https://dash.cloudflare.com/domainconnect",
    "urlAPI": "https://api.cloudflare.com/dns/domainconnect",
    "documentation": "https://developers.cloudflare.com/dns/reference/domain-connect/"
}

And the spec should instruct the DNS provider docs need to tell 1) how to
contact the provider and 2) what is the level of feature support, with all
the nitty-gritty details what a service provider can and should expect.

For example. Cloudflare will require "syncPubKeyDomain". And Cloudflare
will ask "logoUrl" content, that is copied to our data storage to ensure all
the data served by our UI is security reviewed (or to put that differently
extreme paranoia about cross-site scripting is in use).

@pawel-kow
Copy link
Member Author

Interesting aspects.

For the discoverability of the supported features, maybe we should have those elements machine readible.
/settings end point kind of serves this purpose already. Example from OpenID Connect (https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderConfig) shows that such an approach might be helpful.

It would be great to hear from more DNS providers whether the best way to go would be to go over the end-point:

  • benefits: it's decentralised, can be even maintained without anyone knowing or having to manage
  • downsides: for some "process related" information like contact email it is typically not the best idea to bury it in the technical service

An alternative, which was raised as an idea in the past (by Google if I remind well), was:
a) to create a DNS provider profile JSON definition
b) maintain a repository in GitHub with such metainformation

  • benefits: it would be possible to render the website with DNS providers automatically
  • downsides: it's centralised and can get outdated the same way as the website today

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Prio Issues with priority to talk about question
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@kerolasa @pawel-kow