migrating to octodns example

examples/basic/README.md

@@ -14,7 +14,7 @@ From here on this README focuses on the general process of running octoDNS.
 ## Checking out the code and setting up the environment
 
 You would not normally need to check out octoDNS itself, you instead would have
-a git repo with only your configuration files. Here we're cloing the repo only
+a git repo with only your configuration files. Here we're cloning the repo only
 to get a copy of the example files.
 
 ```console

examples/migrating-to-octodns/README.md

@@ -0,0 +1,257 @@
+## Migrating to octoDNS via octodns-dump
+
+Importing an existing DNS setup into octoDNS management is a very
+straightforward process and can generally be completed in minutes.
+
+Some relevant documentation for this example is in comments in the YAML configuration files.
+
+* [config/octodns.yaml](config/octodns.yaml)
+* [config/my-domain.com.yaml](config/my-domain.com.yaml)
+* [config/unused-domain.io.yaml](config/unused-domain.io.yaml)
+
+From here on this README focuses on the general process of running octoDNS to
+create your initial config.
+
+## Checking out the code and setting up the environment
+
+You would not normally need to check out octoDNS itself, you instead would have
+a git repo with only your configuration files. Here we're cloning the repo only
+to get a copy of the example files.
+
+```console
+$ git clone https://github.com/octodns/octodns.git
+$ cd octodns/examples/basic/
+$ python3 -mvenv env
+$ source env/bin/activate
+(env) $ pip install -r requirements.txt
+```
+
+If you were instead creating a repo for your config from scratch it might look
+something like:
+
+```console
+$ mkdir octodnsed
+$ cd octodnsed
+$ git init -b main
+$ mkdir config
+# Using your editor of choice create the main config file with your customized
+# version of things, examples/basic/config/octodns.yaml is a good place to
+# start.
+$ vim config/octodns.yaml
+# follow the process here and once complete
+$ git add config
+$ git commit -m "Importting existing records into octoDNS"
+$ git push -u origin main
+```
+
+## Running octodns-dump
+
+Once you have your configuration files and octoDNS installed you're ready to
+dump your zone configs. Here we've assumed that the provider being used supports
+`list_zones`, not all do. If you get an error to that effect see
+[dynamic-zone-config](../dynamic-zone-config) for details on how to explicitly
+list your zones in the config file.
+
+The quoted * below is what tells octodns-dump to dynamically source the list of
+zones and dump config files for all of them. If you would only like to dump a
+specific zone you can replace it with the zone name, e.g. `my-domain.com.`,
+making sure to include the trailing `.`
+
+
+```console
+(env) coho:migrating-to-octodns ross$ octodns-dump --config-file=config/octodns.yaml --output-dir config/  '*' some-provider
+2023-08-25T10:36:00  [4413005312] INFO  Manager __init__: config_file=config/octodns.yaml, (octoDNS 1.0.0+6e7f036b)
+2023-08-25T10:36:00  [4413005312] INFO  Manager _config_executor: max_workers=1
+2023-08-25T10:36:00  [4413005312] INFO  Manager _config_include_meta: include_meta=False
+2023-08-25T10:36:00  [4413005312] INFO  Manager _config_auto_arpa: auto_arpa=False
+2023-08-25T10:36:00  [4413005312] INFO  Manager __init__: global_processors=[]
+2023-08-25T10:36:00  [4413005312] INFO  Manager __init__: provider=config (octodns.provider.yaml 1.0.0+6e7f036b)
+2023-08-25T10:36:00  [4413005312] INFO  Manager __init__: provider=some-provider (octodns.provider.yaml 1.0.0+6e7f036b)
+2023-08-25T10:36:00  [4413005312] INFO  Manager dump: zone=*, output_dir=config/, output_provider=None, lenient=False, split=False, sources=['some-provider']
+2023-08-25T10:36:00  [4413005312] INFO  Manager dump: using custom YamlProvider
+2023-08-25T10:36:00  [4413005312] INFO  Manager sync:   dynamic zone=*, sources=[YamlProvider]
+2023-08-25T10:36:00  [4413005312] INFO  Manager sync:      adding dynamic zone=my-domain.com.
+2023-08-25T10:36:00  [4413005312] INFO  Manager sync:      adding dynamic zone=unused-domain.io.
+Traceback (most recent call last):
+  File "/Users/ross/octodns/octodns/examples/migrating-to-octodns/env/bin/octodns-dump", line 8, in <module>
+    sys.exit(main())
+             ^^^^^^
+  File "/Users/ross/octodns/octodns/octodns/cmds/dump.py", line 51, in main
+    manager.dump(
+  File "/Users/ross/octodns/octodns/octodns/manager.py", line 868, in dump
+    source.populate(zone, lenient=lenient)
+  File "/Users/ross/octodns/octodns/octodns/provider/yaml.py", line 229, in populate
+    self._populate_from_file(filename, zone, lenient)
+  File "/Users/ross/octodns/octodns/octodns/provider/yaml.py", line 175, in _populate_from_file
+    record = Record.new(
+             ^^^^^^^^^^^
+  File "/Users/ross/octodns/octodns/octodns/record/base.py", line 76, in new
+    raise ValidationError(fqdn, reasons, context)
+octodns.record.exception.ValidationError: Invalid record "my-domain.com.", ./target/my-domain.com.yaml, line 17, column 5
+  - NS value "ns1.some-provider.com" missing trailing .
+  - NS value "ns2.some-provider.com" missing trailing .
+  - NS value "ns3.some-provider.com" missing trailing .
+  - NS value "ns4.some-provider.com" missing trailing .
+```
+
+We've intentionally configured data in the provider without following
+(octoDNS's) best practices as it's common to run across these sorts of things
+when migrating. In this case the NS values are missing their trailing `.`,
+`ns1.some-provider.com` should be `ns1.some-provider.com.`.
+
+Regardless of whether or not you hit errors it is important to carefully look
+over the output of octodns-dump to ensure that it was able to make sense of and
+import everything it found. It usually can, but you may sometimes run across
+things that it can't make sense of or otherwise doesn't support.
+
+This is especially true if you have any advanced records configured in your
+provider. octoDNS generally cannot convert records with functionality like
+weights and/or geo-coding enabled. It'll generally import a "simple" version of
+that record and indicate it's doing so with a WARNING log message. If you hit
+this situation see [Dynamic Records](/docs/dynamic_records.md).
+
+## Running octodns-dump again, now with --lenient
+
+Back to our example, the missing `.`s aren't a huge deal and octoDNS can be
+asked to ignore them with the `--lenient` argument.
+
+```console
+(env) coho:migrating-to-octodns ross$ octodns-dump --config-file=config/octodns.yaml --output-dir config/  '*' some-provider --lenient
+2023-08-25T10:43:26  [4528057856] INFO  Manager __init__: config_file=config/octodns.yaml, (octoDNS 1.0.0+6e7f036b)
+2023-08-25T10:43:26  [4528057856] INFO  Manager _config_executor: max_workers=1
+2023-08-25T10:43:26  [4528057856] INFO  Manager _config_include_meta: include_meta=False
+2023-08-25T10:43:26  [4528057856] INFO  Manager _config_auto_arpa: auto_arpa=False
+2023-08-25T10:43:26  [4528057856] INFO  Manager __init__: global_processors=[]
+2023-08-25T10:43:26  [4528057856] INFO  Manager __init__: provider=config (octodns.provider.yaml 1.0.0+6e7f036b)
+2023-08-25T10:43:26  [4528057856] INFO  Manager __init__: provider=some-provider (octodns.provider.yaml 1.0.0+6e7f036b)
+2023-08-25T10:43:26  [4528057856] INFO  Manager dump: zone=*, output_dir=config/, output_provider=None, lenient=True, split=False, sources=['some-provider']
+2023-08-25T10:43:26  [4528057856] INFO  Manager dump: using custom YamlProvider
+2023-08-25T10:43:26  [4528057856] INFO  Manager sync:   dynamic zone=*, sources=[YamlProvider]
+2023-08-25T10:43:26  [4528057856] INFO  Manager sync:      adding dynamic zone=my-domain.com.
+2023-08-25T10:43:26  [4528057856] INFO  Manager sync:      adding dynamic zone=unused-domain.io.
+2023-08-25T10:43:26  [4528057856] WARNING Record Invalid record "my-domain.com.", ./target/my-domain.com.yaml, line 17, column 5
+  - NS value "ns1.some-provider.com" missing trailing .
+  - NS value "ns2.some-provider.com" missing trailing .
+  - NS value "ns3.some-provider.com" missing trailing .
+  - NS value "ns4.some-provider.com" missing trailing .
+2023-08-25T10:43:26  [4528057856] INFO  YamlProvider[some-provider] populate:   found 10 records, exists=False
+2023-08-25T10:43:26  [4528057856] INFO  YamlProvider[dump] plan: desired=my-domain.com.
+2023-08-25T10:43:26  [4528057856] INFO  YamlProvider[dump] plan:   Creates=10, Updates=0, Deletes=0, Existing Records=0
+2023-08-25T10:43:26  [4528057856] INFO  YamlProvider[dump] apply: making 10 changes to my-domain.com.
+2023-08-25T10:43:26  [4528057856] INFO  YamlProvider[some-provider] populate:   found 0 records, exists=False
+2023-08-25T10:43:26  [4528057856] INFO  YamlProvider[dump] plan: desired=unused-domain.io.
+2023-08-25T10:43:26  [4528057856] WARNING YamlProvider[dump] root NS record supported, but no record is configured for unused-domain.io.
+2023-08-25T10:43:26  [4528057856] INFO  YamlProvider[dump] plan:   No changes
+2023-08-25T10:43:26  [4528057856] INFO  YamlProvider[dump] apply: making 0 changes to unused-domain.io.
+```
+
+## Examining the results
+
+We can now take a look in the config/ directory to see the created zone files
+along side our main config.
+
+```console
+(env) coho:migrating-to-octodns ross$ ls -1 config/
+my-domain.com.yaml
+octodns.yaml
+unused-domain.io.yaml
+```
+
+If you open up the my-domain.com.yaml file you'll note that the root NS record values are missing
+their trailing `.`s. octoDNS has done its best to dump things as they currently
+are in the provider. That means that if you tried to generate a plan with
+`octodns-sync` now it would fail b/c the configuration doesn't follow best
+practices.
+
+When migrating it's recommended to make as few changes to your config as
+possible initially, that is you want to bring the setup as-is under octoDNS
+management and avoid churn as much as possible. This is the safest approach,
+change as little as possible and incrementally work towards having a fully
+managed and compliant/best practice config.
+
+So for now we'll enable `lenient` on the root NS record. For more details on
+see the [lenience](../lenience/) example.
+
+```yaml
+...
+  - octodns:
+      lenient: true
+    type: NS
+    values:
+    - ns1.some-provider.com
+    - ns2.some-provider.com
+    - ns3.some-provider.com
+    - ns4.some-provider.com
+...
+```
+
+## Generating our first plan
+
+We can now ask octoDNS to create a plan to see if anything would change. Since
+we've looked closely at the log output zone configuration files we have a pretty
+good idea the answer is no.
+
+```console
+(env) coho:migrating-to-octodns ross$ octodns-sync --config-file=config/octodns.yaml
+2023-08-25T11:07:44  [4644843008] INFO  Manager __init__: config_file=config/octodns.yaml, (octoDNS 1.0.0+6e7f036b)
+2023-08-25T11:07:44  [4644843008] INFO  Manager _config_executor: max_workers=1
+2023-08-25T11:07:44  [4644843008] INFO  Manager _config_include_meta: include_meta=False
+2023-08-25T11:07:44  [4644843008] INFO  Manager _config_auto_arpa: auto_arpa=False
+2023-08-25T11:07:44  [4644843008] INFO  Manager __init__: global_processors=[]
+2023-08-25T11:07:44  [4644843008] INFO  Manager __init__: provider=config (octodns.provider.yaml 1.0.0+6e7f036b)
+2023-08-25T11:07:44  [4644843008] INFO  Manager __init__: provider=some-provider (octodns.provider.yaml 1.0.0+6e7f036b)
+2023-08-25T11:07:44  [4644843008] INFO  Manager sync: eligible_zones=[], eligible_targets=[], dry_run=True, force=False, plan_output_fh=<stdout>
+2023-08-25T11:07:44  [4644843008] INFO  Manager sync:   sources=['config']
+2023-08-25T11:07:44  [4644843008] INFO  Manager sync:   dynamic zone=*, sources=[YamlProvider]
+2023-08-25T11:07:44  [4644843008] INFO  Manager sync:      adding dynamic zone=my-domain.com.
+2023-08-25T11:07:44  [4644843008] INFO  Manager sync:      adding dynamic zone=unused-domain.io.
+2023-08-25T11:07:44  [4644843008] INFO  Manager sync:   zone=my-domain.com.
+2023-08-25T11:07:44  [4644843008] INFO  Manager sync:   sources=['config']
+2023-08-25T11:07:44  [4644843008] INFO  Manager sync:   targets=['some-provider']
+2023-08-25T11:07:44  [4644843008] INFO  Manager sync:   zone=unused-domain.io.
+2023-08-25T11:07:44  [4644843008] INFO  Manager sync:   sources=['config']
+2023-08-25T11:07:44  [4644843008] INFO  Manager sync:   targets=['some-provider']
+2023-08-25T11:07:44  [4644843008] WARNING Record Invalid record "my-domain.com.", ./config/my-domain.com.yaml, line 9, column 5
+  - NS value "ns1.some-provider.com" missing trailing .
+  - NS value "ns2.some-provider.com" missing trailing .
+  - NS value "ns3.some-provider.com" missing trailing .
+  - NS value "ns4.some-provider.com" missing trailing .
+2023-08-25T11:07:44  [4644843008] INFO  YamlProvider[config] populate:   found 10 records, exists=False
+2023-08-25T11:07:44  [4644843008] INFO  YamlProvider[some-provider] plan: desired=my-domain.com.
+2023-08-25T11:07:44  [4644843008] WARNING Record Invalid record "my-domain.com.", ./target/my-domain.com.yaml, line 17, column 5
+  - NS value "ns1.some-provider.com" missing trailing .
+  - NS value "ns2.some-provider.com" missing trailing .
+  - NS value "ns3.some-provider.com" missing trailing .
+  - NS value "ns4.some-provider.com" missing trailing .
+2023-08-25T11:07:44  [4644843008] INFO  YamlProvider[some-provider] populate:   found 10 records, exists=False
+2023-08-25T11:07:44  [4644843008] INFO  YamlProvider[some-provider] plan:   No changes
+2023-08-25T11:07:44  [4644843008] INFO  YamlProvider[config] populate:   found 0 records, exists=False
+2023-08-25T11:07:44  [4644843008] INFO  YamlProvider[some-provider] plan: desired=unused-domain.io.
+2023-08-25T11:07:44  [4644843008] INFO  YamlProvider[some-provider] populate:   found 0 records, exists=False
+2023-08-25T11:07:44  [4644843008] WARNING YamlProvider[some-provider] root NS record supported, but no record is configured for unused-domain.io.
+2023-08-25T11:07:44  [4644843008] INFO  YamlProvider[some-provider] plan:   No changes
+2023-08-25T11:07:44  [4644843008] INFO  Plan
+********************************************************************************
+No changes were planned
+********************************************************************************
+```
+
+If you had unsupported record types or advanced features in use this may not be
+the case. It's completely safe to generate a plan, octoDNS won't make any
+changes.
+
+If you see things in the plan output section it's time to triple check and make
+sure they're, hopefully minimal, modifications your OK with making.
+
+If the changes are due to advanced functionality you'll need to step back and
+plan a careful migration over to [Dynamic Records](/docs/dynamic_records.md)
+which is beyond the scope of this example.
+
+## What's Next
+
+So now you can commit your config and start managing you DNS with octoDNS rather
+than clicking buttons in UIs or using whatever you previous had used.
+
+* Check out [octoDNS basic example](../basic) for an example of how to create zone configuration YAML files from your existing provider's configuration
+* Have a look at [managing SPF values](../managing-spf) for details on the best practices for configuring email related DNS records with octoDNS
+* For a complete list check out the [Examples Directory](../)

examples/migrating-to-octodns/config/octodns.yaml

@@ -0,0 +1,31 @@
+---
+providers:
+  # See the basic example for descriptions of the bulk of this config file, here
+  # we'll focus on things related to octodns-dump
+  config:
+    class: octodns.provider.yaml.YamlProvider
+    directory: ./config
+
+  # In a real setup this would be your existing DNS provider where all of your
+  # zones are configured. E.g. Route53, Azure, Cloudflare, NS1, ... Here it's
+  # using a second YamlProvider so that the example can be self contained and
+  # will work for anyone. For information on how to configure your provider see
+  # its README.md
+  some-provider:
+    class: octodns.provider.yaml.YamlProvider
+    directory: ./target
+    # This is a rarely used option that tells the YamlProvider that it should
+    # load existing records from disk rather than assume nothing exists
+    # created every a plan is made.
+    # TODO:
+    #populate_existing: true
+
+zones:
+
+  # We're using dynamic zone config to dynamically build the list of configured
+  # zones using the sources & targets below for each.
+  '*':
+    sources:
+      - config
+    targets:
+      - some-provider

examples/migrating-to-octodns/requirements.txt

@@ -0,0 +1,2 @@
+octodns>=1.0.1
+octodns_spf>=0.0.2

examples/migrating-to-octodns/target/my-domain.com.yaml

@@ -0,0 +1,64 @@
+---
+# These are root/APEX records, things that live at the top-level of the zone.
+# There are multiple records so there's a YAML list, each element in that list
+# defines its own record.
+'':
+  # We first have an A record, mapping A my-domain.com to two IPv4 addresses, we
+  # also use a YAML anchor to effectively store the values for later use.
+  - type: A
+    values: &WEB_A_VALUES
+      - 203.0.113.42
+      - 203.0.113.43
+  # Similar to the A above, this is a AAAA for my-domain.com with a single IPv6
+  # addresse.
+  - type: AAAA
+    values: &WEB_AAAA_VALUES
+      - 2001:DB8::44
+  - type: NS
+    values:
+      - ns1.some-provider.com
+      - ns2.some-provider.com
+      - ns3.some-provider.com
+      - ns4.some-provider.com
+  # Finally it's common to have to prove ownership of a domain with a TXT value
+  # in an APEX record. The following are a couple made up examples of how that
+  # would be done. As you'll see when you plan things The SpfSource will merge
+  # its SPF value in with the values defined here
+  - type: TXT
+    values:
+      - some-verification=3becb991-932f-4433-a280-9df6f39b6194
+      - z-other-thing=this proves i have control over this domain
+# This is a wildcard record, any A or AAAA query not matching a more specific
+# answer defined in this file will match this name and receive the associated
+# value in response.
+'*':
+  - type: A
+    # Note here we have a single value rather than values and use `value`.
+    value: 203.0.113.45
+  - type: AAAA
+    value: 2001:DB8::46
+# Note that the records in this zone are sorted, by default YamlProvider
+# enforces alphabetical sorting of records and even the keys within record
+# data. This is an organizational best practice, but can be disabled with the
+# enforce_order parameter to YamlProvider
+NADCBiQKBgQ._companyname:
+  type: TXT
+  value: a-different-proof-of-ownership
+# We want www and the APEX to return the same values for A/AAAA queries. We
+# stored the values earlier in YAML anchors so we can use them now on.
+# This is a CNAME record
+pointer:
+  type: CNAME
+  # CNAMEs can only have a single value so they require `value` to be used. As a
+  # best practice the target name must end with a `.` If you have a specific
+  # case where you need to omit the `.`, or other enforced best practices, see
+  # the lenience example for more information.
+  value: look.over-here.net.
+# This is an example of a record with a `.` in it's name, it would result for a
+# TXT query of NADCBiQKBgQ._companyname.my-domain.com. This specific example is
+# another commonly required proof of overship record.
+www:
+  - type: A
+    values: *WEB_A_VALUES
+  - type: AAAA
+    values: *WEB_AAAA_VALUES

examples/migrating-to-octodns/target/unused-domain.io.yaml

@@ -0,0 +1,2 @@
+---
+# Nothing in here, just an empty domain b/c it's not actually used for anything