refactor

Author: Leechael

custom-domain/dstack-ingress/DNS_PROVIDERS.md

@@ -65,15 +65,13 @@ NAMECHEAP_CLIENT_IP=your-client-ip
 
 **Required Credentials:**
 - `NAMECHEAP_USERNAME` - Your Namecheap account username
-- `NAMECHEAP_API_KEY` - Your Namecheap API key (from https://ap.www.namecheap.com/settings/tools/api-access/)
-- `NAMECHEAP_CLIENT_IP` - Your public IP address (required for Namecheap API authentication)
+- `NAMECHEAP_API_KEY` - Your Namecheap API key (from https://ap.www.namecheap.com/settings/tools/apiaccess/)
+- `NAMECHEAP_CLIENT_IP` - The IP address of the node (required for Namecheap API authentication)
 
 **Important Notes for Namecheap:**
-- Namecheap API requires your client IP address for authentication
-- You can find your public IP at https://www.whatismyip.com/
+- Namecheap API requires node IP address for authentication, and you need add it to whitelist IP first.
 - Namecheap doesn't support CAA records through their API currently
 - The certbot plugin uses the format `certbot-dns-namecheap` package
-- DNS propagation time is set to 120 seconds by default
 
 ## Docker Compose Examples
 

custom-domain/dstack-ingress/scripts/certman.py

@@ -1,15 +1,17 @@
 #!/usr/bin/env python3
 
-from dns_providers import DNSProviderFactory
 import argparse
 import os
 import subprocess
 import sys
+import pkg_resources
 from typing import List, Optional, Tuple
 
 # Add script directory to path to import dns_providers
 sys.path.insert(0, os.path.dirname(os.path.abspath(__file__)))
 
+from dns_providers import DNSProviderFactory
+
 
 class CertManager:
     """Certificate management using DNS provider infrastructure."""
@@ -35,10 +37,9 @@ def install_plugin(self) -> bool:
 
         # Check if plugin is already installed
         try:
-            if self.provider.CERTBOT_PLUGIN == "dns-namecheap":
-                import certbot_dns_namecheap.dns_namecheap
-                print(f"Plugin {self.provider.CERTBOT_PACKAGE} is already installed")
-                return True
+            __import__(self.provider.CERTBOT_PLUGIN_MODULE)
+            print(f"Plugin {self.provider.CERTBOT_PACKAGE} is already installed")
+            return True
         except ImportError:
             pass  # Plugin not installed, continue with installation
 
@@ -48,7 +49,6 @@ def install_plugin(self) -> bool:
         install_methods = []
 
         # Method 1: Use the same python executable that's running this script
-        import sys
         install_methods.append([sys.executable, "-m", "pip", "install", self.provider.CERTBOT_PACKAGE])
 
         # Method 2: Use virtual environment pip if available
@@ -86,16 +86,14 @@ def install_plugin(self) -> bool:
 
         # Diagnostic information for troubleshooting
         try:
-            import sys
-            import pkg_resources
             print(f"Installed to Python: {sys.executable}")
 
             # Show certbot command
             certbot_cmd = self._get_certbot_command()
             print(f"Using certbot: {' '.join(certbot_cmd)}")
 
             try:
-                dist = pkg_resources.get_distribution("certbot-dns-namecheap")
+                dist = pkg_resources.get_distribution(self.provider.CERTBOT_PACKAGE)
                 print(f"Package version: {dist.version} at {dist.location}")
             except pkg_resources.DistributionNotFound:
                 print("Warning: Package not found in current environment")
@@ -104,52 +102,50 @@ def install_plugin(self) -> bool:
 
         # Verify plugin installation
         try:
-            if self.provider.CERTBOT_PLUGIN == "dns-namecheap":
-                import certbot_dns_namecheap.dns_namecheap
-                print(f"Plugin {self.provider.CERTBOT_PLUGIN} successfully imported")
+            imported_module = __import__(self.provider.CERTBOT_PLUGIN_MODULE)
+            print(f"Plugin {self.provider.CERTBOT_PLUGIN} successfully imported")
+            
+            # Test if plugin is recognized by certbot
+            certbot_cmd = self._get_certbot_command()
+            test_cmd = certbot_cmd + ["plugins"]
+            test_result = subprocess.run(test_cmd, capture_output=True, text=True, timeout=10)
+            
+            if test_result.returncode == 0 and self.provider.CERTBOT_PLUGIN in test_result.stdout:
+                print(f"✓ Plugin {self.provider.CERTBOT_PLUGIN} is available in certbot")
+                return True
+            else:
+                print(f"Warning: {self.provider.CERTBOT_PLUGIN} plugin not found in certbot plugins list")
+                if test_result.stderr:
+                    print(f"Plugin test stderr: {test_result.stderr}")
 
-                # Test if plugin is recognized by certbot
-                certbot_cmd = self._get_certbot_command()
-                test_cmd = certbot_cmd + ["plugins"]
-                test_result = subprocess.run(test_cmd, capture_output=True, text=True, timeout=10)
+                # Debug plugin registration
+                self._debug_plugin_registration()
 
-                if test_result.returncode == 0 and "dns-namecheap" in test_result.stdout:
-                    print(f"✓ Plugin {self.provider.CERTBOT_PLUGIN} is available in certbot")
-                    return True
-                else:
-                    print(f"Warning: dns-namecheap plugin not found in certbot plugins list")
-                    if test_result.stderr:
-                        print(f"Plugin test stderr: {test_result.stderr}")
+                # Try force reinstall to fix plugin registration
+                print("Attempting to fix plugin registration...")
+                try:
+                    force_cmd = [sys.executable, "-m", "pip", "install", "--force-reinstall", 
+                               "--no-deps", self.provider.CERTBOT_PACKAGE]
+                    print(f"Running: {' '.join(force_cmd)}")
+                    force_result = subprocess.run(force_cmd, capture_output=True, text=True)
 
-                    # Debug plugin registration
-                    self._debug_plugin_registration()
-                    
-                    # Try force reinstall to fix plugin registration
-                    print("Attempting to fix plugin registration...")
-                    try:
-                        import sys
-                        force_cmd = [sys.executable, "-m", "pip", "install", "--force-reinstall", 
-                                   "--no-deps", self.provider.CERTBOT_PACKAGE]
-                        print(f"Running: {' '.join(force_cmd)}")
-                        force_result = subprocess.run(force_cmd, capture_output=True, text=True)
-                        
-                        if force_result.returncode == 0:
-                            # Test again after reinstall
-                            retest_cmd = certbot_cmd + ["plugins"]
-                            retest_result = subprocess.run(retest_cmd, capture_output=True, text=True, timeout=10)
-                            if retest_result.returncode == 0 and "dns-namecheap" in retest_result.stdout:
-                                print(f"✓ Plugin registration fixed after reinstall")
-                                return True
-                            else:
-                                print(f"Plugin still not registered, may work anyway")
+                    if force_result.returncode == 0:
+                        # Test again after reinstall
+                        retest_cmd = certbot_cmd + ["plugins"]
+                        retest_result = subprocess.run(retest_cmd, capture_output=True, text=True, timeout=10)
+                        if retest_result.returncode == 0 and self.provider.CERTBOT_PLUGIN in retest_result.stdout:
+                            print(f"✓ Plugin registration fixed after reinstall")
+                            return True
                         else:
-                            print(f"Force reinstall failed: {force_result.stderr}")
-                    except Exception as fix_error:
-                        print(f"Plugin fix attempt failed: {fix_error}")
-                    
-                    # Continue anyway - may work in Docker environments
-                    return True
-            
+                            print(f"Plugin still not registered, may work anyway")
+                    else:
+                        print(f"Force reinstall failed: {force_result.stderr}")
+                except Exception as fix_error:
+                    print(f"Plugin fix attempt failed: {fix_error}")
+                
+                # Continue anyway - may work in Docker environments
+                return True
+        
         except Exception as e:
             print(f"Plugin verification warning: {e}")
             return True
@@ -158,7 +154,6 @@ def install_plugin(self) -> bool:
 
     def _ensure_certbot_in_env(self) -> None:
         """Ensure certbot is installed in the current Python environment."""
-        import sys
 
         # Try to import certbot to check if it's installed
         try:
@@ -185,8 +180,6 @@ def _ensure_certbot_in_env(self) -> None:
 
     def _get_certbot_command(self) -> List[str]:
         """Get the correct certbot command that uses the same Python environment."""
-        import sys
-        import os
 
         # Always use certbot from the same Python environment
         python_dir = os.path.dirname(sys.executable)
@@ -221,22 +214,22 @@ def _debug_plugin_registration(self) -> None:
                 for ep in entry_points:
                     print(f"  - {ep.name}: {ep.module_name}")
 
-                # Look specifically for dns-namecheap
-                namecheap_eps = [ep for ep in entry_points if ep.name == 'dns-namecheap']
-                if namecheap_eps:
-                    print(f"✓ Found dns-namecheap entry point: {namecheap_eps[0]}")
+                # Look specifically for our plugin
+                plugin_eps = [ep for ep in entry_points if ep.name == self.provider.CERTBOT_PLUGIN]
+                if plugin_eps:
+                    print(f"✓ Found {self.provider.CERTBOT_PLUGIN} entry point: {plugin_eps[0]}")
                 else:
-                    print(f"✗ dns-namecheap entry point not found")
+                    print(f"✗ {self.provider.CERTBOT_PLUGIN} entry point not found")
             except Exception as ep_error:
                 print(f"Entry point check failed: {ep_error}")
 
             # Check if certbot can import the plugin module
             try:
-                from certbot_dns_namecheap import dns_namecheap
+                imported_module = __import__(self.provider.CERTBOT_PLUGIN_MODULE)
                 print(f"✓ Plugin module can be imported")
 
                 # Check if it has the right class
-                if hasattr(dns_namecheap, 'Authenticator'):
+                if hasattr(imported_module, 'Authenticator'):
                     print(f"✓ Authenticator class found")
                 else:
                     print(f"✗ Authenticator class not found")

custom-domain/dstack-ingress/scripts/dns_providers/cloudflare.py

@@ -15,6 +15,7 @@ class CloudflareDNSProvider(DNSProvider):
 
     # Certbot configuration
     CERTBOT_PLUGIN = "dns-cloudflare"
+    CERTBOT_PLUGIN_MODULE = "certbot_dns_cloudflare"
     CERTBOT_PACKAGE = "certbot-dns-cloudflare==4.0.0"
     CERTBOT_PROPAGATION_SECONDS = 120
     CERTBOT_CREDENTIALS_FILE = "~/.cloudflare/cloudflare.ini"

custom-domain/dstack-ingress/scripts/dns_providers/linode.py

@@ -16,6 +16,7 @@ class LinodeDNSProvider(DNSProvider):
 
     # Certbot configuration
     CERTBOT_PLUGIN = "dns-linode"
+    CERTBOT_PLUGIN_MODULE = "certbot_dns_linode"
     CERTBOT_PACKAGE = "certbot-dns-linode"
     CERTBOT_PROPAGATION_SECONDS = 300
     CERTBOT_CREDENTIALS_FILE = "~/.linode/credentials.ini"

custom-domain/dstack-ingress/scripts/dns_providers/namecheap.py

@@ -12,7 +12,8 @@ class NamecheapDNSProvider(DNSProvider):
 
     DETECT_ENV = "NAMECHEAP_API_KEY"
     CERTBOT_PLUGIN = "dns-namecheap"
-    CERTBOT_PACKAGE = "certbot-dns-namecheap"
+    CERTBOT_PLUGIN_MODULE = "certbot_dns_namecheap"
+    CERTBOT_PACKAGE = "certbot-dns-namecheap==1.0.0"
     CERTBOT_PROPAGATION_SECONDS = 120
     CERTBOT_CREDENTIALS_FILE = "~/.namecheap/namecheap.ini"