From fd96a7c30d3b6ac3067501db5d45ff386de61afa Mon Sep 17 00:00:00 2001 From: Dane Stevens <12450895+dane-stevens@users.noreply.github.com> Date: Wed, 28 Aug 2024 16:15:59 -0400 Subject: [PATCH 01/11] Create hauberk.app.domain-email-verification.json --- hauberk.app.domain-email-verification.json | 53 ++++++++++++++++++++++ 1 file changed, 53 insertions(+) create mode 100644 hauberk.app.domain-email-verification.json diff --git a/hauberk.app.domain-email-verification.json b/hauberk.app.domain-email-verification.json new file mode 100644 index 00000000..7a7d92fc --- /dev/null +++ b/hauberk.app.domain-email-verification.json @@ -0,0 +1,53 @@ +{ + "providerId": "hauberk.app", + "providerName": "Hauberk", + "serviceId": "domain-email-verification", + "serviceName": "Hauberk Domain Email Verification", + "version": 1, + "logoUrl": "https://assets.hauberk.app/hauberkLogo.svg", + "syncPubKeyDomain": "hauberk.app", + "description": "Configures DNS records for Hauberk domain email verification", + "variableDescription": "sel1 is the hostname/subdomain to verify; host1/host2 are the hosts we want the CNAMEs to point to. data is what the DMARC TXT is set to.", + "syncBlock": false, + "syncPubKeyDomain": "hauberk.app", + "records": [ + { + "groupId": "mx", + "type": "MX", + "host": "send.%sel1%", + "pointsTo": "feedback-smtp.%region%.amazonses.com", + "priority": 10, + "ttl": "auto" + }, + { + "groupId": "txt", + "type": "SPFM", + "host": "send.%sel1%", + "pointsTo": "v=spf1 include:amazonses.com ~all", + "ttl": "auto" + }, + { + "groupId": "txt", + "type": "TXT", + "host": "hauberk._domainkey.%sel1%", + "data": "%publicKey%", + "ttl": "auto", + "txtConflictMatchingMode": "All" + }, + { + "groupId": "txt", + "type": "TXT", + "host": "%sel1%", + "pointsTo": "v=DMARC1;p=none;", + "ttl": "auto" + }, + { + "groupId": "mx", + "type": "MX", + "host": "%sel1%", + "pointsTo": "inbound-smtp.%region%.amazonaws.com", + "priority": 10, + "ttl": "auto" + } + ] +} From fab855c61f271fa561a1a80cd3523a9da5c76883 Mon Sep 17 00:00:00 2001 From: Dane Stevens <12450895+dane-stevens@users.noreply.github.com> Date: Wed, 28 Aug 2024 16:36:11 -0400 Subject: [PATCH 02/11] Update hauberk.app.domain-email-verification.json --- hauberk.app.domain-email-verification.json | 24 +++++++++++----------- 1 file changed, 12 insertions(+), 12 deletions(-) diff --git a/hauberk.app.domain-email-verification.json b/hauberk.app.domain-email-verification.json index 7a7d92fc..2d3c8f7c 100644 --- a/hauberk.app.domain-email-verification.json +++ b/hauberk.app.domain-email-verification.json @@ -1,20 +1,20 @@ { "providerId": "hauberk.app", "providerName": "Hauberk", - "serviceId": "domain-email-verification", - "serviceName": "Hauberk Domain Email Verification", + "serviceId": "hauberk-domain-verification", + "serviceName": "Hauberk Domain Verification", "version": 1, "logoUrl": "https://assets.hauberk.app/hauberkLogo.svg", "syncPubKeyDomain": "hauberk.app", - "description": "Configures DNS records for Hauberk domain email verification", - "variableDescription": "sel1 is the hostname/subdomain to verify; host1/host2 are the hosts we want the CNAMEs to point to. data is what the DMARC TXT is set to.", + "description": "Configures DNS records for Hauberk domain verification", + "variableDescription": "unique is randomly generated for use in the username part of the dmarc rua email address; publicKey is a cryptographic signature for signing DKIM.", "syncBlock": false, - "syncPubKeyDomain": "hauberk.app", + "syncRedirectDomain": "hauberk.app", "records": [ { "groupId": "mx", "type": "MX", - "host": "send.%sel1%", + "host": "send.%fqdn%", "pointsTo": "feedback-smtp.%region%.amazonses.com", "priority": 10, "ttl": "auto" @@ -22,14 +22,14 @@ { "groupId": "txt", "type": "SPFM", - "host": "send.%sel1%", - "pointsTo": "v=spf1 include:amazonses.com ~all", + "host": "send.%fqdn%", + "spfRules": "include:amazonses.com", "ttl": "auto" }, { "groupId": "txt", "type": "TXT", - "host": "hauberk._domainkey.%sel1%", + "host": "hauberk._domainkey.%fqdn%", "data": "%publicKey%", "ttl": "auto", "txtConflictMatchingMode": "All" @@ -37,14 +37,14 @@ { "groupId": "txt", "type": "TXT", - "host": "%sel1%", - "pointsTo": "v=DMARC1;p=none;", + "host": "%fqdn%", + "pointsTo": "v=DMARC1; p=none; rua=mailto:%unique%@dmarc-reports.hauberk.app%", "ttl": "auto" }, { "groupId": "mx", "type": "MX", - "host": "%sel1%", + "host": "%fqdn%", "pointsTo": "inbound-smtp.%region%.amazonaws.com", "priority": 10, "ttl": "auto" From 8d902583f4a7b215bf57d0cf1028a6171a33301c Mon Sep 17 00:00:00 2001 From: Dane Stevens <12450895+dane-stevens@users.noreply.github.com> Date: Wed, 28 Aug 2024 16:37:29 -0400 Subject: [PATCH 03/11] Update hauberk.app.domain-email-verification.json --- hauberk.app.domain-email-verification.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/hauberk.app.domain-email-verification.json b/hauberk.app.domain-email-verification.json index 2d3c8f7c..b5d23747 100644 --- a/hauberk.app.domain-email-verification.json +++ b/hauberk.app.domain-email-verification.json @@ -37,14 +37,14 @@ { "groupId": "txt", "type": "TXT", - "host": "%fqdn%", + "host": "@", "pointsTo": "v=DMARC1; p=none; rua=mailto:%unique%@dmarc-reports.hauberk.app%", "ttl": "auto" }, { "groupId": "mx", "type": "MX", - "host": "%fqdn%", + "host": "@", "pointsTo": "inbound-smtp.%region%.amazonaws.com", "priority": 10, "ttl": "auto" From 09cdc98df46d15b6a5bddeb6bc1fd933e9ea816d Mon Sep 17 00:00:00 2001 From: Dane Stevens <12450895+dane-stevens@users.noreply.github.com> Date: Wed, 28 Aug 2024 17:04:34 -0400 Subject: [PATCH 04/11] Update hauberk.app.domain-email-verification.json --- hauberk.app.domain-email-verification.json | 20 ++++++++++---------- 1 file changed, 10 insertions(+), 10 deletions(-) diff --git a/hauberk.app.domain-email-verification.json b/hauberk.app.domain-email-verification.json index b5d23747..96b3b2db 100644 --- a/hauberk.app.domain-email-verification.json +++ b/hauberk.app.domain-email-verification.json @@ -1,48 +1,48 @@ { "providerId": "hauberk.app", "providerName": "Hauberk", - "serviceId": "hauberk-domain-verification", + "serviceId": "domain-email-verification", "serviceName": "Hauberk Domain Verification", "version": 1, "logoUrl": "https://assets.hauberk.app/hauberkLogo.svg", "syncPubKeyDomain": "hauberk.app", "description": "Configures DNS records for Hauberk domain verification", - "variableDescription": "unique is randomly generated for use in the username part of the dmarc rua email address; publicKey is a cryptographic signature for signing DKIM.", + "variableDescription": "domain is a a FQDN; unique is randomly generated for use in the username part of the dmarc rua email address; publicKey is a cryptographic signature for signing DKIM.", "syncBlock": false, "syncRedirectDomain": "hauberk.app", "records": [ { - "groupId": "mx", + "groupId": "outbound", "type": "MX", - "host": "send.%fqdn%", + "host": "send.%domain%", "pointsTo": "feedback-smtp.%region%.amazonses.com", "priority": 10, "ttl": "auto" }, { - "groupId": "txt", + "groupId": "outbound", "type": "SPFM", - "host": "send.%fqdn%", + "host": "send.%domain%", "spfRules": "include:amazonses.com", "ttl": "auto" }, { - "groupId": "txt", + "groupId": "outbound", "type": "TXT", - "host": "hauberk._domainkey.%fqdn%", + "host": "hauberk._domainkey.%domain%", "data": "%publicKey%", "ttl": "auto", "txtConflictMatchingMode": "All" }, { - "groupId": "txt", + "groupId": "outbound", "type": "TXT", "host": "@", "pointsTo": "v=DMARC1; p=none; rua=mailto:%unique%@dmarc-reports.hauberk.app%", "ttl": "auto" }, { - "groupId": "mx", + "groupId": "inbound", "type": "MX", "host": "@", "pointsTo": "inbound-smtp.%region%.amazonaws.com", From 5114c16cb47c76e5fbcf13a9c288da507f059227 Mon Sep 17 00:00:00 2001 From: Dane Stevens <12450895+dane-stevens@users.noreply.github.com> Date: Wed, 28 Aug 2024 17:30:06 -0400 Subject: [PATCH 05/11] Update and rename hauberk.app.domain-email-verification.json to hauberk.app.domain-verification.json --- ...cation.json => hauberk.app.domain-verification.json | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) rename hauberk.app.domain-email-verification.json => hauberk.app.domain-verification.json (79%) diff --git a/hauberk.app.domain-email-verification.json b/hauberk.app.domain-verification.json similarity index 79% rename from hauberk.app.domain-email-verification.json rename to hauberk.app.domain-verification.json index 96b3b2db..d36aa307 100644 --- a/hauberk.app.domain-email-verification.json +++ b/hauberk.app.domain-verification.json @@ -1,20 +1,20 @@ { "providerId": "hauberk.app", "providerName": "Hauberk", - "serviceId": "domain-email-verification", + "serviceId": "domain-verification", "serviceName": "Hauberk Domain Verification", "version": 1, "logoUrl": "https://assets.hauberk.app/hauberkLogo.svg", "syncPubKeyDomain": "hauberk.app", "description": "Configures DNS records for Hauberk domain verification", - "variableDescription": "domain is a a FQDN; unique is randomly generated for use in the username part of the dmarc rua email address; publicKey is a cryptographic signature for signing DKIM.", + "variableDescription": "unique is randomly generated for use in the username part of the dmarc rua email address; publicKey is a cryptographic signature for signing DKIM; region is an AWS region.", "syncBlock": false, "syncRedirectDomain": "hauberk.app", "records": [ { "groupId": "outbound", "type": "MX", - "host": "send.%domain%", + "host": "send.%fqdn%", "pointsTo": "feedback-smtp.%region%.amazonses.com", "priority": 10, "ttl": "auto" @@ -22,14 +22,14 @@ { "groupId": "outbound", "type": "SPFM", - "host": "send.%domain%", + "host": "send.%fqdn%", "spfRules": "include:amazonses.com", "ttl": "auto" }, { "groupId": "outbound", "type": "TXT", - "host": "hauberk._domainkey.%domain%", + "host": "hauberk._domainkey.%fqdn%", "data": "%publicKey%", "ttl": "auto", "txtConflictMatchingMode": "All" From bff22f6c401112fd329624ad8e556d82fb0bce6c Mon Sep 17 00:00:00 2001 From: Dane Stevens <12450895+dane-stevens@users.noreply.github.com> Date: Wed, 28 Aug 2024 17:34:33 -0400 Subject: [PATCH 06/11] Update hauberk.app.domain-verification.json --- hauberk.app.domain-verification.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/hauberk.app.domain-verification.json b/hauberk.app.domain-verification.json index d36aa307..a37e7dca 100644 --- a/hauberk.app.domain-verification.json +++ b/hauberk.app.domain-verification.json @@ -38,7 +38,7 @@ "groupId": "outbound", "type": "TXT", "host": "@", - "pointsTo": "v=DMARC1; p=none; rua=mailto:%unique%@dmarc-reports.hauberk.app%", + "data": "v=DMARC1; p=%policy%; rua=mailto:%unique%@dmarc-reports.hauberk.app%", "ttl": "auto" }, { From 6bc18865df03189fdea76ae47253d2e9fe34729b Mon Sep 17 00:00:00 2001 From: Dane Stevens <12450895+dane-stevens@users.noreply.github.com> Date: Wed, 28 Aug 2024 17:38:09 -0400 Subject: [PATCH 07/11] Update hauberk.app.domain-verification.json --- hauberk.app.domain-verification.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/hauberk.app.domain-verification.json b/hauberk.app.domain-verification.json index a37e7dca..3b535a57 100644 --- a/hauberk.app.domain-verification.json +++ b/hauberk.app.domain-verification.json @@ -37,14 +37,14 @@ { "groupId": "outbound", "type": "TXT", - "host": "@", + "host": "_dmarc.%domain%", "data": "v=DMARC1; p=%policy%; rua=mailto:%unique%@dmarc-reports.hauberk.app%", "ttl": "auto" }, { "groupId": "inbound", "type": "MX", - "host": "@", + "host": "%fqdn%", "pointsTo": "inbound-smtp.%region%.amazonaws.com", "priority": 10, "ttl": "auto" From d121962293b59bb79640ab23380fd5ecc228e4cf Mon Sep 17 00:00:00 2001 From: Dane Stevens <12450895+dane-stevens@users.noreply.github.com> Date: Wed, 28 Aug 2024 17:44:57 -0400 Subject: [PATCH 08/11] Update hauberk.app.domain-verification.json --- hauberk.app.domain-verification.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/hauberk.app.domain-verification.json b/hauberk.app.domain-verification.json index 3b535a57..cf102aaf 100644 --- a/hauberk.app.domain-verification.json +++ b/hauberk.app.domain-verification.json @@ -38,7 +38,7 @@ "groupId": "outbound", "type": "TXT", "host": "_dmarc.%domain%", - "data": "v=DMARC1; p=%policy%; rua=mailto:%unique%@dmarc-reports.hauberk.app%", + "data": "v=DMARC1; p=%policy%; rua=mailto:%unique%@dmarc-reports.hauberk.app", "ttl": "auto" }, { From 78ea6ec06128041bd9413c7f9472e04dbadce776 Mon Sep 17 00:00:00 2001 From: Dane Stevens <12450895+dane-stevens@users.noreply.github.com> Date: Wed, 28 Aug 2024 18:01:15 -0400 Subject: [PATCH 09/11] Update hauberk.app.domain-verification.json --- hauberk.app.domain-verification.json | 13 +++++++------ 1 file changed, 7 insertions(+), 6 deletions(-) diff --git a/hauberk.app.domain-verification.json b/hauberk.app.domain-verification.json index cf102aaf..9bfb042f 100644 --- a/hauberk.app.domain-verification.json +++ b/hauberk.app.domain-verification.json @@ -17,29 +17,30 @@ "host": "send.%fqdn%", "pointsTo": "feedback-smtp.%region%.amazonses.com", "priority": 10, - "ttl": "auto" + "ttl": 300 }, { "groupId": "outbound", "type": "SPFM", "host": "send.%fqdn%", "spfRules": "include:amazonses.com", - "ttl": "auto" + "ttl": 300 }, { "groupId": "outbound", "type": "TXT", "host": "hauberk._domainkey.%fqdn%", "data": "%publicKey%", - "ttl": "auto", - "txtConflictMatchingMode": "All" + "ttl": 300 }, { "groupId": "outbound", "type": "TXT", "host": "_dmarc.%domain%", "data": "v=DMARC1; p=%policy%; rua=mailto:%unique%@dmarc-reports.hauberk.app", - "ttl": "auto" + "ttl": 300, + "txtConflictMatchingMode": "Prefix", + "txtConflictMatchingPrefix": "v=DMARC1" }, { "groupId": "inbound", @@ -47,7 +48,7 @@ "host": "%fqdn%", "pointsTo": "inbound-smtp.%region%.amazonaws.com", "priority": 10, - "ttl": "auto" + "ttl": 300 } ] } From 87a0cd02f491f87255c3eb561d924623888278e4 Mon Sep 17 00:00:00 2001 From: Dane Stevens <12450895+dane-stevens@users.noreply.github.com> Date: Wed, 28 Aug 2024 18:16:55 -0400 Subject: [PATCH 10/11] Update hauberk.app.domain-verification.json Fixes for requested changes --- hauberk.app.domain-verification.json | 13 ++++++------- 1 file changed, 6 insertions(+), 7 deletions(-) diff --git a/hauberk.app.domain-verification.json b/hauberk.app.domain-verification.json index 9bfb042f..435fddcb 100644 --- a/hauberk.app.domain-verification.json +++ b/hauberk.app.domain-verification.json @@ -14,7 +14,7 @@ { "groupId": "outbound", "type": "MX", - "host": "send.%fqdn%", + "host": "send", "pointsTo": "feedback-smtp.%region%.amazonses.com", "priority": 10, "ttl": 300 @@ -22,21 +22,20 @@ { "groupId": "outbound", "type": "SPFM", - "host": "send.%fqdn%", - "spfRules": "include:amazonses.com", - "ttl": 300 + "host": "send", + "spfRules": "include:amazonses.com" }, { "groupId": "outbound", "type": "TXT", - "host": "hauberk._domainkey.%fqdn%", + "host": "hauberk._domainkey", "data": "%publicKey%", "ttl": 300 }, { "groupId": "outbound", "type": "TXT", - "host": "_dmarc.%domain%", + "host": "_dmarc.%domain%.", "data": "v=DMARC1; p=%policy%; rua=mailto:%unique%@dmarc-reports.hauberk.app", "ttl": 300, "txtConflictMatchingMode": "Prefix", @@ -45,7 +44,7 @@ { "groupId": "inbound", "type": "MX", - "host": "%fqdn%", + "host": "@", "pointsTo": "inbound-smtp.%region%.amazonaws.com", "priority": 10, "ttl": 300 From e993ada743d6da7b76d75d7c536874635e519a4e Mon Sep 17 00:00:00 2001 From: Dane Stevens <12450895+dane-stevens@users.noreply.github.com> Date: Thu, 29 Aug 2024 05:49:59 -0400 Subject: [PATCH 11/11] Update hauberk.app.domain-verification.json Made dmarc and inbound non-essential --- hauberk.app.domain-verification.json | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/hauberk.app.domain-verification.json b/hauberk.app.domain-verification.json index 435fddcb..dbd90b01 100644 --- a/hauberk.app.domain-verification.json +++ b/hauberk.app.domain-verification.json @@ -39,7 +39,8 @@ "data": "v=DMARC1; p=%policy%; rua=mailto:%unique%@dmarc-reports.hauberk.app", "ttl": 300, "txtConflictMatchingMode": "Prefix", - "txtConflictMatchingPrefix": "v=DMARC1" + "txtConflictMatchingPrefix": "v=DMARC1", + "essential": "OnApply" }, { "groupId": "inbound", @@ -47,7 +48,8 @@ "host": "@", "pointsTo": "inbound-smtp.%region%.amazonaws.com", "priority": 10, - "ttl": 300 + "ttl": 300, + "essential": "OnApply" } ] }