pdns-auth-proxy/test_todo/pdns-proxy-test.conf

config
{
    profiles
    {
       {{< localtest.conf }}
       testS2S
       {
          subjectRegexp:      "validserver"
          type:               regexp
       }
    }
    pdnsAcls
    {
       "testS2S"
       {
           regexp:            "zones/dev\\..*"
           perms:             ["r"]
           profiles:          [ "testS2S" ]
       },
       "admin"
       {
           regexp:            ".*"
           perms:             ["r", "w"]
           profiles:          [ "infra" ]
       },
       "writeTest"
       {
           regexp:            "zones/specificdomain.example"
           perms:             ["r", "w"]
           profiles:          [ "testS2S" ]
       },
    }
    jrpcAcls
    {
       "admin"
       {
           perms
           {
               "*":           [ ".*" ]
           }
           pgpProfiles:       [ "infra" ]
       },
       "testS2S"
       {
           perms
           {
               "*":           [ ".*toto.example.org" ]
               "list":        [ ".*" ]
               "search"       [ ".*example.org" ]
           }
           sslProfiles:       [ "testS2S" ]
       },
       "webui":
       {
           perms
           {
               "*":           [ ".*corp.*" ]
           }
           sslProfiles:       [ "infra" ]
       }
       "security"
       {
           perms
           {
               "dump":        [ ".*" ]
               "list":        [ ".*" ]
               "search":      [ ".*" ]
           }
           sslProfiles:       [ "security"]
       }
    }
    http
    {
       port:       ":8443"
       ca:         "fixtures/test/ca.crt"
       key:        "fixtures/test/server-key.pem"
       cert:       "fixtures/test/server-cert.pem"
    }
    pdns
    {
       api-key:    "123password"
       api-url:    "http://127.0.0.1:8081/api/v1/servers/localhost"
       timeout:    300
       defaultTTL: 172800


    }
    zoneProfile
    {
       Native
       {
           nameservers: [ "a.iana-servers.net.", "b.iana-servers.net." ]
           default:     false
           soa:         "ns.icann.org. noc.dns.icann.org. 0 28800 7200 604800 86400"
           whenRegexp
           [
            "(^|.*[^.]\\.)10\\.in-addr\\.arpa",
            "(^|.*[^.]\\.)168\\.192\\.in-addr\\.arpa",
            "(^|.*[^.]\\.)(1[6-9]|2[0-9]|3[0-1])\\.172\\.in-addr\\.arpa",
            "(^|.*[^.]\\.)(6[4-9]|[7-9][0-9]|1([0-1][0-9]|2[0-7]))\\.100\\.in-addr\\.arpa",
           ]
       }
       Master
       {
           nameservers: [ "a.iana-servers.net.", "b.iana-servers.net." ]
           default:     true
           soa:         "ns.icann.org. noc.dns.icann.org. 0 28800 7200 604800 86400"
           populate
           {
               spf
               {
                        name:  ""
                        type:  "txt"
                        value: "v=spf1 -all"
               }
           }
       }
    }
}
Initial euclide.org release 2023-11-17 05:55:06 +00:00			`config`
			`{`
			`profiles`
			`{`
			`{{< localtest.conf }}`
			`testS2S`
			`{`
			`subjectRegexp: "validserver"`
			`type: regexp`
			`}`
			`}`
			`pdnsAcls`
			`{`
			`"testS2S"`
			`{`
			`regexp: "zones/dev\\..*"`
			`perms: ["r"]`
			`profiles: [ "testS2S" ]`
			`},`
			`"admin"`
			`{`
			`regexp: ".*"`
			`perms: ["r", "w"]`
			`profiles: [ "infra" ]`
			`},`
			`"writeTest"`
			`{`
			`regexp: "zones/specificdomain.example"`
			`perms: ["r", "w"]`
			`profiles: [ "testS2S" ]`
			`},`
			`}`
			`jrpcAcls`
			`{`
			`"admin"`
			`{`
			`perms`
			`{`
			`"": [ "." ]`
			`}`
			`pgpProfiles: [ "infra" ]`
			`},`
			`"testS2S"`
			`{`
			`perms`
			`{`
deactive tests at the moment 2023-11-17 06:29:35 +00:00			`"": [ ".toto.example.org" ]`
Initial euclide.org release 2023-11-17 05:55:06 +00:00			`"list": [ ".*" ]`
deactive tests at the moment 2023-11-17 06:29:35 +00:00			`"search" [ ".*example.org" ]`
Initial euclide.org release 2023-11-17 05:55:06 +00:00			`}`
			`sslProfiles: [ "testS2S" ]`
			`},`
			`"webui":`
			`{`
			`perms`
			`{`
			`"": [ ".corp.*" ]`
			`}`
			`sslProfiles: [ "infra" ]`
			`}`
			`"security"`
			`{`
			`perms`
			`{`
			`"dump": [ ".*" ]`
			`"list": [ ".*" ]`
			`"search": [ ".*" ]`
			`}`
			`sslProfiles: [ "security"]`
			`}`
			`}`
			`http`
			`{`
			`port: ":8443"`
			`ca: "fixtures/test/ca.crt"`
			`key: "fixtures/test/server-key.pem"`
			`cert: "fixtures/test/server-cert.pem"`
			`}`
			`pdns`
			`{`
			`api-key: "123password"`
			`api-url: "http://127.0.0.1:8081/api/v1/servers/localhost"`
			`timeout: 300`
			`defaultTTL: 172800`


			`}`
			`zoneProfile`
			`{`
			`Native`
			`{`
			`nameservers: [ "a.iana-servers.net.", "b.iana-servers.net." ]`
			`default: false`
			`soa: "ns.icann.org. noc.dns.icann.org. 0 28800 7200 604800 86400"`
			`whenRegexp`
			`[`
			`"(^\|.*[^.]\\.)10\\.in-addr\\.arpa",`
			`"(^\|.*[^.]\\.)168\\.192\\.in-addr\\.arpa",`
			`"(^\|.*[^.]\\.)(1[6-9]\|2[0-9]\|3[0-1])\\.172\\.in-addr\\.arpa",`
			`"(^\|.*[^.]\\.)(6[4-9]\|[7-9][0-9]\|1([0-1][0-9]\|2[0-7]))\\.100\\.in-addr\\.arpa",`
			`]`
			`}`
			`Master`
			`{`
			`nameservers: [ "a.iana-servers.net.", "b.iana-servers.net." ]`
			`default: true`
			`soa: "ns.icann.org. noc.dns.icann.org. 0 28800 7200 604800 86400"`
			`populate`
			`{`
			`spf`
			`{`
			`name: ""`
			`type: "txt"`
			`value: "v=spf1 -all"`
			`}`
			`}`
			`}`
			`}`
			`}`