Is there a whitelisted/blacklisted TLDs which letsEncrypt support

pjoshi · July 16, 2018, 12:57pm

I want to know if there is a public API which we can use to check for tld of domains which letsEncrypt supports. I will like to check for the domain before passing it to letsEncrypt so that letsEncrypt doesn’t error out for those specific domains. I have checked previous questions where people have pointed to https://publicsuffix.org/list/public_suffix_list.dat. Just want to confirm should we depend on this list directly or is there a better API which returns data in JSON format?

Thanks

schoen · July 16, 2018, 7:00pm

Hi @pjoshi,

This is handled at

github.com

letsencrypt/boulder/blob/670ab0a1417713bcedaa51a753caafed508ab53b/policy/pa.go#L477


	}


	shuffledCombos := make([][]int, len(combinations))
	for i, comboIdx := range pa.pseudoRNG.Perm(len(combinations)) {
		shuffledCombos[i] = combinations[comboIdx]
	}


	return shuffled, shuffledCombos, nil
}


// ExtractDomainIANASuffix returns the public suffix of the domain using only the "ICANN"
// section of the Public Suffix List database.
// If the domain does not end in a suffix that belongs to an IANA-assigned
// domain, ExtractDomainIANASuffix returns an error.
func extractDomainIANASuffix(name string) (string, error) {
	if name == "" {
		return "", fmt.Errorf("Blank name argument passed to ExtractDomainIANASuffix")
	}


	rule := publicsuffix.DefaultList.Find(name, &publicsuffix.FindOptions{IgnorePrivate: true, DefaultRule: nil})
	if rule == nil {

In turn, this is using the library at

to check whether a name ends in an IANA-created public suffix.

system · August 15, 2018, 7:00pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Is LetsEncrypt compatible with all TLDs? Help	10	5910	February 8, 2021
Wildcard certificates and Public Suffix List Issuance Policy	5	2356	September 29, 2019
Publicsuffix/list should be replaced with dedicated solution Issuance Policy	2	1891	July 5, 2017
Letsencrypt works! Can i request a cert for my subdomain?	2	4364	October 30, 2015
Lightsail Letsencrypt Error Cannot issue for "*.domain": Name does not end in a public suffix (.org) Help	14	6997	September 14, 2019

Is there a whitelisted/blacklisted TLDs which letsEncrypt support

Related topics