caddytls: Support custom bind host for challenges (#3232)

author: Matthew Holt <mholt@users.noreply.github.com> 2020-04-06 11:22:06 -0600
committer: Matthew Holt <mholt@users.noreply.github.com> 2020-04-06 11:22:06 -0600
commit: 6a32daa225dddacf2a87da089e1160a77ef69afb (patch)
tree: 563791fdaa03eb4e5cbaf677bad24fd2673e0f82 /modules/caddytls
parent: 81cdebf648e16760e5c76097419a114149acfc2f (diff)
2 files changed, 5 insertions, 0 deletions
diff --git a/modules/caddytls/acmeissuer.go b/modules/caddytls/acmeissuer.go
index 133d007..8c52625 100644
--- a/modules/caddytls/acmeissuer.go
+++ b/modules/caddytls/acmeissuer.go
@@ -153,6 +153,7 @@ func (m *ACMEIssuer) makeIssuerTemplate() (certmagic.ACMEManager, error) {
 			template.AltTLSALPNPort = m.Challenges.TLSALPN.AlternatePort
 		}
 		template.DNSProvider = m.Challenges.DNS
+		template.ListenHost = m.Challenges.BindHost
 	}
 
 	return template, nil
diff --git a/modules/caddytls/automation.go b/modules/caddytls/automation.go
index 24a21cb..22cf20b 100644
--- a/modules/caddytls/automation.go
+++ b/modules/caddytls/automation.go
@@ -239,6 +239,10 @@ type ChallengesConfig struct {
 	// to Caddy from an external server.
 	DNSRaw json.RawMessage `json:"dns,omitempty" caddy:"namespace=tls.dns inline_key=provider"`
 
+	// Optionally customize the host to which a listener
+	// is bound if required for solving a challenge.
+	BindHost string `json:"bind_host,omitempty"`
+
 	DNS challenge.Provider `json:"-"`
 }
author	Matthew Holt <mholt@users.noreply.github.com>	2020-04-06 11:22:06 -0600
committer	Matthew Holt <mholt@users.noreply.github.com>	2020-04-06 11:22:06 -0600
commit	6a32daa225dddacf2a87da089e1160a77ef69afb (patch)
tree	563791fdaa03eb4e5cbaf677bad24fd2673e0f82 /modules/caddytls
parent	81cdebf648e16760e5c76097419a114149acfc2f (diff)