aboutsummaryrefslogtreecommitdiffstats
path: root/dns
diff options
context:
space:
mode:
authorGravatar Joe Banks <[email protected]>2024-04-27 19:56:16 +0100
committerGravatar Joe Banks <[email protected]>2024-04-27 19:58:09 +0100
commitac6c720f2c4f278d54f3951f3260f4bf12a5001b (patch)
tree6ba5120154da776c16d9158d87ccce0e111acd7b /dns
parentAdd DNS folders to README.md (diff)
Document the DNS system in dns/README.md
Diffstat (limited to 'dns')
-rw-r--r--dns/README.md23
1 files changed, 22 insertions, 1 deletions
diff --git a/dns/README.md b/dns/README.md
index 0e6d74a..c7c4e6a 100644
--- a/dns/README.md
+++ b/dns/README.md
@@ -1,3 +1,24 @@
# DNS Management
-This folder manages DNS records across the zones we use. It uses [octodns](https://github.com/octodns/octodns) with the Cloudfare provider to push and synchronize zone records with the YAML files in the `zones` folder.
+This folder manages DNS records across the zones we use. It uses [OctoDNS](https://github.com/octodns/octodns) with the Cloudfare provider to push and synchronize zone records with the YAML files in the `zones` folder.
+
+## Usage
+
+Edit the YAML files in `zones/` to add, update or delete records.
+
+If you have a local OctoDNS tokens for Cloudflare, you can install the dependencies with `poetry install --only dns` in the root folder and then run `poetry run octodns-sync --config-file dns/production.yaml`.
+
+**NOTE:** All commands have must run from the root directory of the repository, this is because in GitHub Actions the environment is the root folder.
+
+## Deployment
+
+If a PR includes DNS changes, a GitHub Actions workflow will comment all the amendments that will be made to the production setup in the PR comments. This comment will be updated for subsequent pushes to that branch.
+
+Once a PR is merged to `main`, the planned deployments will be executed on the production Cloudflare account.
+
+## Environment
+
+| Environment Variable | Description |
+|-------------------------|--------------------------------------------------------------------------------------------------|
+| `CLOUDFLARE_TOKEN` | The Cloudflare token that (at least) has `Zone:Read` and `DNS:Read`, or if deploying `DNS:Write` |
+| `CLOUDFLARE_ACCOUNT_ID` | The Account ID to scope updates to |