Built-in webserver
==================
-To visually interact with dnsdist, try add :func:`webserver` to the configuration:
+To visually interact with dnsdist, try adding :func:`webserver` and :func:`setWebserverConfig` directives to the configuration:
.. code-block:: lua
- webserver("127.0.0.1:8083", "supersecretpassword", "supersecretAPIkey")
+ webserver("127.0.0.1:8083")
+ setWebserverConfig({password="supersecretpassword", apiKey="supersecretAPIkey"})
Now point your browser at http://127.0.0.1:8083 and log in with any username, and that password. Enjoy!
.. code-block:: lua
- webserver("127.0.0.1:8083", "supersecretpassword", "supersecretAPIkey", {}, "192.0.2.0/24, !192.0.2.1")
+ setWebserverConfig({password="supersecretpassword", apiKey="supersecretAPIkey", acl="192.0.2.0/24, !192.0.2.1"})
Security of the Webserver
.. code-block:: lua
- webserver("127.0.0.1:8080", "supersecret", "apikey", {["X-Frame-Options"]= "", ["X-Custom"]="custom"})
+ setWebserverConfig({password="supersecretpassword", apiKey="supersecretAPIkey", customHeaders={["X-Frame-Options"]= "", ["X-Custom"]="custom"} })
-Credentials can be changed over time using the :func:`setWebserverConfig` function.
+Credentials can be changed at run time using the :func:`setWebserverConfig` function.
dnsdist API
-----------
The ``password`` parameter is now optional.
The use of optional parameters is now deprecated. Please use :func:`setWebserverConfig` instead.
- Launch the :doc:`../guides/webserver` with statistics and the API. Note that the parameters are global, so the parameter from the last ``webserver`` will override any existing ones. For this reason
- the use of :func:`setWebserverConfig` is advised instead of specifying optional parameters here.
+ .. versionchanged:: 1.7.0
+ The ``password``, ``apikey``, ``customHeaders`` and ``acl`` parameters is no longer supported.
+ Please use :func:`setWebserverConfig` instead.
+
+ Launch the :doc:`../guides/webserver` with statistics and the API. Note that the parameters are global, so the parameter from the last ``webserver`` will override any existing ones. For this reason :func:`setWebserverConfig` should be used instead of specifying optional parameters here.
:param str listen_address: The IP address and Port to listen on
:param str password: The password required to access the webserver
.. deprecated:: 1.6.0
- This function has been deprecated in 1.6.0, please use :func:`SetDisableECSAction` instead.
+ This function has been deprecated in 1.6.0 and removed in 1.7.0, please use :func:`SetDisableECSAction` instead.
Disable the sending of ECS to the backend.
Subsequent rules are processed after this action.
.. deprecated:: 1.6.0
- This function has been deprecated in 1.6.0, please use :func:`SetDisableValidationAction` instead.
+ This function has been deprecated in 1.6.0 and removed in 1.7.0, please use :func:`SetDisableValidationAction` instead.
Set the CD bit in the query and let it go through.
Subsequent rules are processed after this action.
.. deprecated:: 1.6.0
- This function has been deprecated in 1.6.0, please use :func:`SetECSOverrideAction` instead.
+ This function has been deprecated in 1.6.0 and removed in 1.7.0, please use :func:`SetECSOverrideAction` instead.
Whether an existing EDNS Client Subnet value should be overridden (true) or not (false).
Subsequent rules are processed after this action.
.. deprecated:: 1.6.0
- This function has been deprecated in 1.6.0, please use :func:`SetECSPrefixLengthAction` instead.
+ This function has been deprecated in 1.6.0 and removed in 1.7.0, please use :func:`SetECSPrefixLengthAction` instead.
Set the ECS prefix length.
Subsequent rules are processed after this action.
.. deprecated:: 1.6.0
- This function has been deprecated in 1.6.0, please use :func:`SetMacAddrAction` instead.
+ This function has been deprecated in 1.6.0 and removed in 1.7.0, please use :func:`SetMacAddrAction` instead.
Add the source MAC address to the query as EDNS0 option ``option``.
This action is currently only supported on Linux.
.. deprecated:: 1.6.0
- This function has been deprecated in 1.6.0, please use :func:`SetNoRecurseAction` instead.
+ This function has been deprecated in 1.6.0 and removed in 1.7.0, please use :func:`SetNoRecurseAction` instead.
Strip RD bit from the question, let it go through.
Subsequent rules are processed after this action.
.. deprecated:: 1.6.0
- This function has been deprecated in 1.6.0, please use :func:`NegativeAndSOAAction` instead.
+ This function has been deprecated in 1.6.0 and removed in 1.7.0, please use :func:`NegativeAndSOAAction` instead.
Turn a question into a response, either a NXDOMAIN or a NODATA one based on ''nxd'', setting the QR bit to 1 and adding a SOA record in the additional section.
.. deprecated:: 1.6.0
- This function has been deprecated in 1.6.0, please use :func:`SetSkipAction` instead.
+ This function has been deprecated in 1.6.0 and removed in 1.7.0, please use :func:`SetSkipAction` instead.
Don't lookup the cache for this query, don't store the answer.
Subsequent rules are processed after this action.
.. function:: TagAction(name, value)
.. deprecated:: 1.6.0
- This function has been deprecated in 1.6.0, please use :func:`SetTagAction` instead.
+ This function has been deprecated in 1.6.0 and removed in 1.7.0, please use :func:`SetTagAction` instead.
Associate a tag named ``name`` with a value of ``value`` to this query, that will be passed on to the response.
Subsequent rules are processed after this action.
.. function:: TagResponseAction(name, value)
.. deprecated:: 1.6.0
- This function has been deprecated in 1.6.0, please use :func:`SetTagResponseAction` instead.
+ This function has been deprecated in 1.6.0 and removed in 1.7.0, please use :func:`SetTagResponseAction` instead.
Associate a tag named ``name`` with a value of ``value`` to this response.
Subsequent rules are processed after this action.
.. deprecated:: 1.6.0
- This function has been deprecated in 1.6.0, please use :func:`SetTempFailureCacheTTLAction` instead.
+ This function has been deprecated in 1.6.0 and removed in 1.7.0, please use :func:`SetTempFailureCacheTTLAction` instead.
Set the cache TTL to use for ServFail and Refused replies. TTL is not applied for successful replies.
Subsequent rules are processed after this action.
projects / thirdparty / pdns.git / commitdiff
