From 6a32daa225dddacf2a87da089e1160a77ef69afb Mon Sep 17 00:00:00 2001
From: Matthew Holt <mholt@users.noreply.github.com>
Date: Mon, 6 Apr 2020 11:22:06 -0600
Subject: caddytls: Support custom bind host for challenges (#3232)

---
 modules/caddytls/acmeissuer.go | 1 +
 modules/caddytls/automation.go | 4 ++++
 2 files changed, 5 insertions(+)

(limited to 'modules/caddytls')

diff --git a/modules/caddytls/acmeissuer.go b/modules/caddytls/acmeissuer.go
index 133d007..8c52625 100644
--- a/modules/caddytls/acmeissuer.go
+++ b/modules/caddytls/acmeissuer.go
@@ -153,6 +153,7 @@ func (m *ACMEIssuer) makeIssuerTemplate() (certmagic.ACMEManager, error) {
 			template.AltTLSALPNPort = m.Challenges.TLSALPN.AlternatePort
 		}
 		template.DNSProvider = m.Challenges.DNS
+		template.ListenHost = m.Challenges.BindHost
 	}
 
 	return template, nil
diff --git a/modules/caddytls/automation.go b/modules/caddytls/automation.go
index 24a21cb..22cf20b 100644
--- a/modules/caddytls/automation.go
+++ b/modules/caddytls/automation.go
@@ -239,6 +239,10 @@ type ChallengesConfig struct {
 	// to Caddy from an external server.
 	DNSRaw json.RawMessage `json:"dns,omitempty" caddy:"namespace=tls.dns inline_key=provider"`
 
+	// Optionally customize the host to which a listener
+	// is bound if required for solving a challenge.
+	BindHost string `json:"bind_host,omitempty"`
+
 	DNS challenge.Provider `json:"-"`
 }
 
-- 
cgit v1.2.3