-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathintegration-manifest.json
More file actions
139 lines (139 loc) · 6.48 KB
/
integration-manifest.json
File metadata and controls
139 lines (139 loc) · 6.48 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
{
"$schema": "https://keyfactor.github.io/v2/integration-manifest-schema.json",
"name": "Acme AnyCA REST plugin",
"release_dir": "AcmeCaPlugin/bin/Release",
"release_project": "AcmeCaPlugin/AcmeCaPlugin.csproj",
"description": "Enrollment Only AnyCA Gateway REST plugin that works with multiple ACME Providers and DNS Providers",
"status": "production",
"integration_type": "anyca-plugin",
"support_level": "kf-supported",
"link_github": true,
"update_catalog": true,
"gateway_framework": "24.2",
"about": {
"carest": {
"ca_plugin_config": [
{
"name": "Enabled",
"description": "Enable or disable this CA connector. When disabled, all operations (ping, enroll, sync) are skipped."
},
{
"name": "DirectoryUrl",
"description": "ACME directory URL (e.g. Let's Encrypt, ZeroSSL, etc.)"
},
{
"name": "Email",
"description": "Email for ACME account registration."
},
{
"name": "EabKid",
"description": "External Account Binding Key ID (optional)"
},
{
"name": "EabHmacKey",
"description": "External Account Binding HMAC key (optional)"
},
{
"name": "SignerEncryptionPhrase",
"description": "Used to encrypt singer information when account is saved to disk (optional)"
},
{
"name": "DnsProvider",
"description": "DNS Provider to use for ACME DNS-01 challenges (options: Google, Cloudflare, AwsRoute53, Azure, Ns1, Rfc2136, Infoblox)"
},
{
"name": "Google_ServiceAccountKeyPath",
"description": "Google Cloud DNS: Path to service account JSON key file only if using Google DNS (Optional)"
},
{
"name": "Google_ServiceAccountKeyJson",
"description": "Google Cloud DNS: Service account JSON key content (alternative to file path for containerized deployments)"
},
{
"name": "Google_ProjectId",
"description": "Google Cloud DNS: Project ID only if using Google DNS (Optional)"
},
{
"name": "AccountStoragePath",
"description": "Path for ACME account storage. Defaults to %APPDATA%\\AcmeAccounts on Windows or ./AcmeAccounts in containers."
},
{
"name": "Cloudflare_ApiToken",
"description": "Cloudflare DNS: API Token only if using Cloudflare DNS (Optional)"
},
{
"name": "Azure_ClientId",
"description": "Azure DNS: ClientId only if using Azure DNS and Not Managed Itentity in Azure (Optional)"
},
{
"name": "Azure_ClientSecret",
"description": "Azure DNS: ClientSecret only if using Azure DNS and Not Managed Itentity in Azure (Optional)"
},
{
"name": "Azure_SubscriptionId",
"description": "Azure DNS: SubscriptionId only if using Azure DNS and Not Managed Itentity in Azure (Optional)"
},
{
"name": "Azure_TenantId",
"description": "Azure DNS: TenantId only if using Azure DNS and Not Managed Itentity in Azure (Optional)"
},
{
"name": "AwsRoute53_AccessKey",
"description": "Aws DNS: Access Key only if not using AWS DNS and default AWS Chain Creds on AWS (Optional)"
},
{
"name": "AwsRoute53_SecretKey",
"description": "Aws DNS: Secret Key only if using AWS DNS and not using default AWS Chain Creds on AWS (Optional)"
},
{
"name": "Ns1_ApiKey",
"description": "Ns1 DNS: Api Key only if Using Ns1 DNS (Optional)"
},
{
"name": "Rfc2136_Server",
"description": "RFC 2136 DNS: Server hostname or IP address (Optional)"
},
{
"name": "Rfc2136_Port",
"description": "RFC 2136 DNS: Server port (default 53) (Optional)"
},
{
"name": "Rfc2136_Zone",
"description": "RFC 2136 DNS: Zone name (e.g., example.com) (Optional)"
},
{
"name": "Rfc2136_TsigKeyName",
"description": "RFC 2136 DNS: TSIG key name for authentication (Optional)"
},
{
"name": "Rfc2136_TsigKey",
"description": "RFC 2136 DNS: TSIG key (base64 encoded) for authentication (Optional)"
},
{
"name": "Rfc2136_TsigAlgorithm",
"description": "RFC 2136 DNS: TSIG algorithm (default hmac-sha256) (Optional)"
},
{
"name": "DnsVerificationServer",
"description": "DNS server to use for verifying TXT record propagation. For private/local DNS zones, set this to your authoritative DNS server IP (e.g., 10.3.10.37). Leave empty to use public DNS servers (Google, Cloudflare, etc.)."
},
{
"name": "Infoblox_Host",
"description": "Infoblox DNS: API URL (e.g., https://infoblox.example.com/wapi/v2.12) only if using Infoblox DNS (Optional)"
},
{
"name": "Infoblox_Username",
"description": "Infoblox DNS: Username for authentication only if using Infoblox DNS (Optional)"
},
{
"name": "Infoblox_Password",
"description": "Infoblox DNS: Password for authentication only if using Infoblox DNS (Optional)"
}
],
"enrollment_config": [],
"product_ids": [
"default"
]
}
}
}