API Reference

DNSSEC Workflow

  1. Setup Domain
    ( /websites )
  2. Enable DNS
    ( /v2/websites/[website_id]/dns/enable )
  3. Enable DNSSec
    ( /v2/websites/[website_id]/dnssec )
  4. Call List Delegation Records
    ( /v2/websites/[website_id]/dns/ds_records )
    Returns:
    - domain - value of the affected domain
    - keytag - Identifier for DNSSEC record
    - algorithm - cryptographic algorithm that generates signature
    - digest_type - algorithm that constructs digest
    - digest - alpha numeric value to provide to registrar
  5. Use the information to set the DS Records for the domain at the registrar
    ( dependent on the registrar )
  6. Listen for website_dnssec_rotation_start webhook
  7. Handle website_dnssec_rotation_start by updating registrar like step 5 and remove the old keys
    8 (Optional). Listen for website_dnssec_rotation_complete
    9 (Optional). Handle website_dnssec_rotation_complete by removing old key/DS Record from Registrar
  8. Repeat from step 6