#4229 [RFE] Add support for SPF records
Closed: Invalid None Opened 10 years ago by rmeggins.

designate supports SPF records. There may be other servers/clients that will require SPF records


Rich, this ticket was triaged for 4.0 backlog but we would have welcome a patch :-)

Could you send a patch which adds this attribute to IPA LDAP schema and CLI?

freeipa-devel list will assist you as needed.

Thank you!

Replying to [comment:4 pspacek]:

Rich, this ticket was triaged for 4.0 backlog but we would have welcome a patch :-)

Maybe when I am done adding the ipa backend to designate, I will have time to work on a patch. In the meantime, it looks like a TXT record can be used.

Could you send a patch which adds this attribute to IPA LDAP schema and CLI?

When I filed this ticket, I wasn't aware that this would require LDAP changes, and I guess the biggest problem is that there is no attribute defined for SPF records. I'm not sure where this would be added. The best place would be to amend whatever RFCs or other standards documents define the DNS record schema. That will be a lengthy process. In the meantime, I guess the best approach would be to define one ourselves based on the other record types, using our OID namespace. We would also need to define an auxiliary objectclass with this attribute, so that we could add it to existing record entries.

freeipa-devel list will assist you as needed.

Thank you!

Replying to [comment:5 rmeggins]:

Replying to [comment:4 pspacek]:

Could you send a patch which adds this attribute to IPA LDAP schema and CLI?
When I filed this ticket, I wasn't aware that this would require LDAP changes, and I guess the biggest problem is that there is no attribute defined for SPF records. I'm not sure where this would be added. The best place would be to amend whatever RFCs or other standards documents define the DNS record schema.

There is a decentralized & unambiguous way how to add a new record type immediately, please see:
https://git.fedorahosted.org/cgit/bind-dyndb-ldap.git/tree/doc/schema

I.e. we don't need to go through any standardization process because it was already standardized :-)

RFE not done in 4.0 - moving to next release.

This is no longer needed for the Designate FreeIPA plug-in, as it's using TXT records instead. I'm going to close this ticket since we no longer need this functionality.

Thanks for information. I will leave the ticket open for tracking purposes. My goal is to (eventually) support all resource record types.

Ok. Nevertheless, this is not a priority for FreeIPA DNS interface for now. Deferring the ticket then.

The SPF record type has been dropped. According to RFC 7208 Sec 3.1, SPF records MUST be published as a DNS TXT Resource Record only. FreeIPA already supports the TXT RR.

Metadata Update from @rmeggins:
- Issue assigned to mbasti
- Issue set to the milestone: Tickets Deferred

7 years ago

Login to comment on this ticket.

Metadata