Skip to content

SmollClover/Cloudflare-TLSA-Generator

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

36 Commits
src
src
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
biome.json
biome.json
 
 
build.ts
build.ts
 
 
bun.lockb
bun.lockb
 
 
docker.sh
docker.sh
 
 
package.json
package.json
 
 
tsconfig.json
tsconfig.json
 
 

Repository files navigation

Cloudflare TLSA Generator

GitHub license Docker Pulls Docker Image Size

Automatically generate and update TLSA records from a .pem certificate on Cloudflare.

Usage

Environment Variables

Variable Type Default Example Description
CERT REQUIRED unset /data/certs/mail.example.com/cert.pem The path to the certificate
CF_API_TOKEN REQUIRED unset XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX A Cloudflare API Token with access to the Zone and to read and write DNS records
ZONE_ID OPTIONAL unset XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX Explicit ID of Cloudflare Zone used instead of using the Domain
COMMON_NAME OPTIONAL read from certificate mail.example.com Common name used for the TLSA record
DOMAIN OPTIONAL derived from COMMON_NAME example.com Domain used to get Cloudflare Zone
TLSA_PREFIX OPTIONAL _25._tcp _25._tcp Prefix used for the TLSA record name

Basic Example

services:
  cloudflare-tlsa:
    image: smollclover/cloudflare-tlsa-generator:latest
    volumes:
        - certs:/data/certs:ro
    environment:
        - CERT=/data/certs/mail.example.com/cert.pem
        - CF_API_TOKEN=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

About

Automatically create TLSA records in Cloudflare based off of a local certificate chain

Topics

docker automation certificate docker-image cloudflare tlsa tls-certificate tlsa-records tlsa-dns-update

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 5

v1.2.1 Latest
Mar 25, 2025
+ 4 releases

Languages