Sha256: 75ba8164adc065e85771f39a2c0ceb5a66870e0463361150efafba0043262349
Contents?: true
Size: 1.64 KB
Versions: 3
Compression:
Stored size: 1.64 KB
Contents
# frozen_string_literal: true
require "dnsruby"
require "public_suffix"
require "github-pages-health-check/resolver"
module GitHubPages
module HealthCheck
class CAA
attr_reader :host, :error, :nameservers
def initialize(host, nameservers: :default)
raise ArgumentError, "host cannot be nil" if host.nil?
@host = host
@nameservers = nameservers
end
def errored?
records # load the records first
!error.nil?
end
def lets_encrypt_allowed?
return false if errored?
return true unless records_present?
records.any? { |r| r.property_value == "letsencrypt.org" }
end
def records_present?
return false if errored?
records && !records.empty?
end
def records
return @records if defined?(@records)
@records = get_caa_records(host)
@records = get_caa_records(parent_host) if @records.nil? || @records.empty?
@records
end
private
def get_caa_records(domain)
return [] if domain.nil?
query(domain).select { |r| issue_caa_record?(r) }
end
def issue_caa_record?(record)
record.type == Dnsruby::Types::CAA && record.property_tag == "issue"
end
def query(domain)
resolver(domain).query(Dnsruby::Types::CAA)
rescue Dnsruby::ResolvError, Dnsruby::ResolvTimeout => e
@error = e
[]
end
def resolver(domain)
GitHubPages::HealthCheck::Resolver.new(domain, :nameservers => nameservers)
end
def parent_host
host.split(".").drop(1).join(".")
end
end
end
end
Version data entries
3 entries across 3 versions & 1 rubygems