Switch from API calls to community.dns.hetzner_dns_record

Part of #241, #249

Author: rbo

ansible/roles/letsencrypt/tasks/create-hetzner.yml

@@ -1,33 +1,12 @@
 ---
-
-- name: Get DNS zone id at Hetzner
-  delegate_to: localhost
-  ansible.builtin.uri:
-    url: "https://dns.hetzner.com/api/v1/zones"
-    body_format: json
-    return_content: true
-    body:
-      name: "{{ le_hetzner_zone }}"
-    headers:
-      Auth-API-Token: "{{ hetzner_account_api_token }}"
-      Content-Type: 'application/json'
-  register: le_hetzner_zone_id
-
 - name: Create letsencrypt DNS record at Hetzner
-  delegate_to: localhost
-  ansible.builtin.uri:
-    url: "https://dns.hetzner.com/api/v1/records"
-    method: POST
-    body_format: json
-    return_content: true
-    body:
-      value: "{{ item.1 }}"
-      ttl: 60
-      type: TXT
-      name: "{{ item.0.key | replace(public_domain, '') | regex_replace('\\.$', '') }}"
-      zone_id: "{{ le_hetzner_zone_id.json.zones | json_query('[*].id') | join(', ') }}"
-    headers:
-      Auth-API-Token: "{{ le_hetzner_account_api_token }}"
-      Content-Type: 'application/json'
+  community.dns.hetzner_dns_record:
+    state: present
+    zone: "{{ hetzner_zone }}"
+    record: "{{ item.0.key }}"
+    type: TXT
+    ttl: 60
+    value: "{{ item.1 }}"
+    hetzner_token: "{{ hetzner_account_api_token }}"
   register: hetzner_record
   loop: "{{ challenge_data_dns | default({}) | dict2items | subelements('value') }}"

ansible/roles/letsencrypt/tasks/destroy-hetzner.yml

@@ -1,12 +1,12 @@
 ---
 - name: Delete DNS record at Hetzner
-  delegate_to: localhost
-  ansible.builtin.uri:  # noqa no-handler
-    url: "https://dns.hetzner.com/api/v1/records/{{ item.json.record.id }}"
-    method: DELETE
-    headers:
-      Auth-API-Token: "{{ le_hetzner_account_api_token }}"
-      Content-Type: 'application/json'
-  with_items: "{{ hetzner_record.results }}"
-  when:
-    - sample_com_challenge is changed
+  community.dns.hetzner_dns_record:
+    state: absent
+    zone: "{{ hetzner_zone }}"
+    record: "{{ item.0.key }}"
+    type: TXT
+    ttl: 60
+    value: "{{ item.1 }}"
+    hetzner_token: "{{ hetzner_account_api_token }}"
+  register: hetzner_record
+  loop: "{{ challenge_data_dns | default({}) | dict2items | subelements('value') }}"

ansible/roles/public_dns/tasks/create-hetzner.yml

@@ -1,58 +1,13 @@
 ---
-- name: Get DNS zone id at Hetzner
-  uri:
-    url: "https://dns.hetzner.com/api/v1/zones"
-    body_format: json
-    return_content: true
-    body:
-      name: "{{ hetzner_zone }}"
-    headers:
-      Auth-API-Token: "{{ hetzner_account_api_token }}"
-      Content-Type: 'application/json'
-  register: register_hetzner_zone_id
-  tags:
-    - public_dns
-
-- name: Set hetzner_zone_id
-  set_fact:
-    # hetzner_zone_id:  "{{ register_hetzner_zone_id.json.zones | json_query('[?name==`'~ hetzner_zone ~'`] | [0].id')  }}"
-    #   You don't need the name == .. because of the body above.
-    #   https://dns.hetzner.com/api-docs#operation/GetZones
-    hetzner_zone_id: "{{ register_hetzner_zone_id.json.zones[0].id }}"
-
-- name: Get all DNS records
-  uri:
-    url: "https://dns.hetzner.com/api/v1/records?zone_id={{ hetzner_zone_id }}"
-    body_format: json
-    return_content: true
-    headers:
-      Auth-API-Token: "{{ hetzner_account_api_token }}"
-      Content-Type: 'application/json'
-  register: register_hetzner_records
-  tags:
-    - public_dns
-
-- name: Define hetzner_records_to_delete
-  # yamllint disable rule:line-length
-  set_fact:
-    available_records: "{{ register_hetzner_records.json.records | json_query('[?(value==`'~  pd_public_ip ~'` && ( name==`api.'~ cluster_name ~'` || name ==`*.apps.'~ cluster_name ~'` ) )] | [*].name') }}"
-  # yamllint enable rule:line-length
-
 - name: Create DNS record at Hetzner
-  uri:
-    url: "https://dns.hetzner.com/api/v1/records"
-    method: POST
-    body_format: json
-    return_content: true
-    body:
-      value: "{{ pd_public_ip }}"
-      ttl: 120
-      type: A
-      name: "{{ item }}.{{ cluster_name }}"
-      zone_id: "{{ hetzner_zone_id }}"
-    headers:
-      Auth-API-Token: "{{ hetzner_account_api_token }}"
-      Content-Type: 'application/json'
+  community.dns.hetzner_dns_record:
+    state: present
+    zone: "{{ hetzner_zone }}"
+    record: "{{ item }}.{{ cluster_name }}.{{ public_domain }}."
+    type: A
+    ttl: 120
+    value: "{{ pd_public_ip }}"
+    hetzner_token: "{{ hetzner_account_api_token }}"
   with_items:
     - api
     - '*.apps'
@@ -61,20 +16,14 @@
   when: (pd_public_ip is defined) and (pd_public_ip|length > 0)
 
 - name: Create IPv6 DNS record at Hetzner
-  uri:
-    url: "https://dns.hetzner.com/api/v1/records"
-    method: POST
-    body_format: json
-    return_content: true
-    body:
-      value: "{{ pd_public_ipv6 }}"
-      ttl: 120
-      type: AAAA
-      name: "{{ item }}.{{ cluster_name }}"
-      zone_id: "{{ hetzner_zone_id }}"
-    headers:
-      Auth-API-Token: "{{ hetzner_account_api_token }}"
-      Content-Type: 'application/json'
+  community.dns.hetzner_dns_record:
+    state: present
+    zone: "{{ hetzner_zone }}"
+    record: "{{ item }}.{{ cluster_name }}.{{ public_domain }}."
+    type: AAAA
+    ttl: 120
+    value: "{{ pd_public_ipv6 }}"
+    hetzner_token: "{{ hetzner_account_api_token }}"
   with_items:
     - api
     - '*.apps'

ansible/roles/public_dns/tasks/destroy-hetzner.yml

@@ -1,65 +1,32 @@
 ---
-- name: Get DNS zone id at Hetzner
-  uri:
-    url: "https://dns.hetzner.com/api/v1/zones"
-    body_format: json
-    return_content: true
-    body:
-      name: "{{ hetzner_zone }}"
-    headers:
-      Auth-API-Token: "{{ hetzner_account_api_token }}"
-      Content-Type: 'application/json'
-  register: register_hetzner_zone_id
+- name: Delete DNS record at Hetzner
+  community.dns.hetzner_dns_record:
+    state: absent
+    zone: "{{ hetzner_zone }}"
+    record: "{{ item }}.{{ cluster_name }}.{{ public_domain }}."
+    type: A
+    ttl: 120
+    value: "{{ pd_public_ip }}"
+    hetzner_token: "{{ hetzner_account_api_token }}"
+  with_items:
+    - api
+    - '*.apps'
   tags:
     - public_dns
+  when: (pd_public_ip is defined) and (pd_public_ip|length > 0)
 
-- name: Set hetzner_zone_id
-  set_fact:
-    # hetzner_zone_id:  "{{ register_hetzner_zone_id.json.zones | json_query('[?name==`'~ hetzner_zone ~'`] | [0].id')  }}"
-    #   You don't need the name == .. because of the body above.
-    #   https://dns.hetzner.com/api-docs#operation/GetZones
-    hetzner_zone_id: "{{ register_hetzner_zone_id.json.zones[0].id }}"
-
-- name: Get all DNS records
-  uri:
-    url: "https://dns.hetzner.com/api/v1/records?zone_id={{ hetzner_zone_id }}"
-    body_format: json
-    return_content: true
-    headers:
-      Auth-API-Token: "{{ hetzner_account_api_token }}"
-      Content-Type: 'application/json'
-  register: register_hetzner_records
+- name: Delete IPv6 DNS record at Hetzner
+  community.dns.hetzner_dns_record:
+    state: absent
+    zone: "{{ hetzner_zone }}"
+    record: "{{ item }}.{{ cluster_name }}.{{ public_domain }}."
+    type: AAAA
+    ttl: 120
+    value: "{{ pd_public_ipv6 }}"
+    hetzner_token: "{{ hetzner_account_api_token }}"
+  with_items:
+    - api
+    - '*.apps'
   tags:
     - public_dns
-
-- name: Define hetzner_records_to_delete
-# yamllint disable rule:line-length
-  set_fact:
-    hetzner_records_to_delete: "{{ register_hetzner_records.json.records | json_query('[?(value==`'~  pd_public_ip ~'` && ( name==`api.'~ cluster_name ~'` || name ==`*.apps.'~ cluster_name ~'` ) )] | [*].id') }}"
-# yamllint enable rule:line-length
-
-- name: Delete DNS record at Hetzner
-  uri:
-    url: "https://dns.hetzner.com/api/v1/records/{{ item }}"
-    method: DELETE
-    headers:
-      Auth-API-Token: "{{ hetzner_account_api_token }}"
-      Content-Type: 'application/json'
-  with_items: "{{ hetzner_records_to_delete }}"
-
-- name: Define hetzner_records_to_delete
-  # yamllint disable rule:line-length
-  set_fact:
-    hetzner_records_to_delete: "{{ register_hetzner_records.json.records | json_query('[?(value==`'~  pd_public_ipv6 ~'` && ( name==`api.'~ cluster_name ~'` || name ==`*.apps.'~ cluster_name ~'` ) )] | [*].id') }}"
-  # yamllint enable rule:line-length
-  when: (pd_public_ipv6 is defined) and (pd_public_ipv6|length > 0)
-
-- name: Delete DNS record at Hetzner
-  uri:
-    url: "https://dns.hetzner.com/api/v1/records/{{ item }}"
-    method: DELETE
-    headers:
-      Auth-API-Token: "{{ hetzner_account_api_token }}"
-      Content-Type: 'application/json'
-  with_items: "{{ hetzner_records_to_delete }}"
   when: (pd_public_ipv6 is defined) and (pd_public_ipv6|length > 0)