This package contains a DNS provider module for Caddy. It can be used to manage DNS records in Azure DNS Hosted zones.
dns.providers.azure
This module supports authentication using a service principal with a secret and a managed identity.
See the associated README in the libdns package for important information about credentials.
To compile this Caddy module, follow the steps describe at the Caddy Build from Source instructions and import the github.com/caddy-dns/azure plugin
Tip
These examples are for authenticating using a service principal with a secret.
To attempt to authenticate using a managed identity, remove all of tenant_id, client_id, and client_secret.
Refer to the associated README in the libdns package for more information.
To use this module for the ACME DNS challenge, configure the ACME issuer in your Caddy JSON like so:
{
"module": "acme",
"challenges": {
"dns": {
"provider": {
"name": "azure",
"subscription_id": "{env.AZURE_SUBSCRIPTION_ID}",
"resource_group_name": "{env.AZURE_RESOURCE_GROUP_NAME}",
"tenant_id": "{env.AZURE_TENANT_ID}",
"client_id": "{env.AZURE_CLIENT_ID}",
"client_secret": "{env.AZURE_CLIENT_SECRET}",
}
}
}
}or with the Caddyfile:
tls {
dns azure {
subscription_id {$AZURE_SUBSCRIPTION_ID}
resource_group_name {$AZURE_RESOURCE_GROUP_NAME}
tenant_id {$AZURE_TENANT_ID}
client_id {$AZURE_CLIENT_ID}
client_secret {$AZURE_CLIENT_SECRET}
}
}
You can replace {$*} or {env.*} with the actual values if you prefer to put it directly in your config instead of an environment variable.