Correct faffy to AMS (not DUB)

[dns.git] / src / opengeodata.js

diff --git a/src/opengeodata.js b/src/opengeodata.js
index 6dfc203874d1a5be4858f71187d4555e4b90c1f1..a189d3f5c0430a2fcabc247e341d9845581d671d 100644 (file)
--- a/src/opengeodata.js
+++ b/src/opengeodata.js
@@ -2,9 +2,27 @@ D(DOMAIN, REGISTRAR, DnsProvider(PROVIDER),
 
   // Publish CAA records indicating that only letsencrypt should issue certificates
 
-  CAA("@", "issue", "letsencrypt.org", CF_TTL_ANY),
-  CAA("@", "issuewild", "letsencrypt.org", CF_TTL_ANY),
-  CAA("@", "iodef", "mailto:hostmaster@openstreetmap.org"),
+  CAA_BUILDER({
+    label: "@",
+    iodef: "mailto:hostmaster@openstreetmap.org",
+    issue: [
+      "letsencrypt.org",
+    ],
+    issuewild: [
+      "letsencrypt.org",
+    ],
+  }),
+
+  // Delegate SPF policy to the main domain
+
+  SPF_BUILDER({
+    label: "@",
+    parts: [
+      "v=spf1",
+      "include:openstreetmap.org",      // main openstreetmap.org spf record
+      "-all"
+    ]
+  }),
 
   // Main web server and it's aliases
 
@@ -12,4 +30,4 @@ D(DOMAIN, REGISTRAR, DnsProvider(PROVIDER),
   A("old", RIDLEY_IPV4, TTL("10m")),
   A("www", RIDLEY_IPV4, TTL("10m"))
 
-);
+);
\ No newline at end of file