My application uses a Wildcard SSL certificate. Since the challenge for this type of certificate is DNS-based, we need to link our Cloudflare account by providing an API key.
I created a key in Cloudflare by following these steps:
- Go to the
API keyssection - Select the template
"Edit zone DNS" - Set "include specific zone" to the zone in question
- Optionally provide an IP address for "Client IP Address Filtering" (I didn't do this, but would be nice to do).
This provides you with a shiny new API key.
However, in Ploi, we get this error:
"We could not authenticate you with Cloudflare, are you sure this is the right API key? Also make sure your profile e-mail matches the one in Cloudflare."
I asked in the Discord channel (a few weeks ago) and it seems that scoped keys are not supported yet.
Yes, this please! Giving root access to my account which contains many sub-accounts feels a little wrong just in case something happens. Would be much happier to know a scoped token is used that I can control which sites and features Ploi can access on my behalf!
Take note of the updated guide for this: https://ploi.io/documentation/dns/how-do-i-attach-cloudflare-to-my-account
Also; legacy tokens (global API key) will continue to work. So if you've already got thing set up and you're fine with how it is, leave it like it is, you'll be fine to continue.
Otherwise, just unlink from your profile, and then link again with your newly generated token.
Support for Cloudflare scoped API keys
-
Dennis moved item to board Live
1 year ago -
Nathan Geerinck moved item to board In code review
1 year ago -
Nathan Geerinck moved item to board In progress
1 year ago -
Dennis moved item to board Planned
3 years ago -
pickles moved item to project Panel Requests
3 years ago -
pickles created the item
3 years ago