Skip to content

Update byteseats.com.storefront: add Cloudflare ownership TXT record#1174

Open
nader-bytesai wants to merge 2 commits into
Domain-Connect:masterfrom
nader-bytesai:add-cf-ownership-txt
Open

Update byteseats.com.storefront: add Cloudflare ownership TXT record#1174
nader-bytesai wants to merge 2 commits into
Domain-Connect:masterfrom
nader-bytesai:add-cf-ownership-txt

Conversation

@nader-bytesai
Copy link
Copy Markdown
Contributor

@nader-bytesai nader-bytesai commented Jun 2, 2026
edited
Loading

Description

Updates the previously-merged byteseats.com.storefront template (#1168) to add the Cloudflare hostname-ownership verification TXT record alongside the existing CNAME.

Bytes serves customer storefronts through Cloudflare for SaaS custom hostnames, which require two DNS records to go live: the routing CNAME (already in the template) and the _cf-custom-hostname ownership TXT (a per-hostname token that keeps ownership pre-validation on — the mitigation against dangling-CNAME subdomain takeover). With only the CNAME in the template, the one-click apply left customers to add the ownership TXT by hand; this change lets a single apply write both records.

Type of change

  • New template
  • Bug fix (non-breaking change which fixes an issue in the template)
  • New feature (non-breaking change which adds functionality to the template)
  • Breaking change (fix or feature that would cause existing template behavior to be not backward compatible)

How Has This Been Tested?

  • Template functionality checked using Online Editor
  • Template file name follows the pattern <providerId>.<serviceId>.json
  • resource URL provided with logoUrl is actually served by a webserver

Checklist of common problems

  • syncPubKeyDomain is set — public key is published at _dcpubkeyv1.byteseats.com
  • warnPhishing is not set alongside syncPubKeyDomain
  • syncRedirectDomain is set
  • no TXT record contains SPF content — the only TXT is the Cloudflare ownership token at _cf-custom-hostname.<host>
  • txtConflictMatchingMode is set on the TXT record that must be unique — set to All so a re-apply / hostname rotation replaces the ownership token rather than stacking a duplicate
  • no variable is used as a bare full record value — the CNAME's pointsTo and the TXT's data are full values (%target% / %ownership%); the request is RSA-signed (Cloudflare requires signing), preventing tampering
  • no bare variable is used as the full host label — CNAME host is @; TXT host is the literal prefix _cf-custom-hostname combined with the apply host parameter
  • no variable is used in the host field to create a subdomain — the host parameter is used (hostRequired: true)
  • %host% does not appear explicitly in any host attribute
  • essential — N/A; both records are core service records that must not be removed without breaking the storefront

Online Editor test results

Subdomain test (apex test not required since hostRequired: true). Applying with domain=bytesai.dev, host=order, target=qa.web.byteseats.com, ownership=<cf-token> produces:

  • CNAME order → qa.web.byteseats.com
  • TXT _cf-custom-hostname.order → <cf-token>

Editor test link:
Test byteseats.com/storefront on bytesai.dev/order

🤖 Generated with Claude Code

@nader-bytesai
feat(byteseats.com.storefront): add Cloudflare ownership TXT record
bf19525 
Adds the _cf-custom-hostname ownership-verification TXT (value via the
%ownership% variable) alongside the existing CNAME, so a single one-click
apply writes both records Cloudflare for SaaS requires (hostname ownership
pre-validation + routing). Bumps version 2 -> 3.
@github-actions github-actions Bot added hostRequired hostRequired is set Checklist of common problems not complete See PR template and mark *all* checkboxes, even if not applicable. Explain any discrepancies. PR description incomplete The PR description template was not filled in at all, altered or filled in improperly. Test links missing No test links from Online Editor provided labels Jun 2, 2026
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Jun 2, 2026
edited
Loading

JSON Filename Check Passed

@github-actions
Copy link
Copy Markdown

github-actions Bot commented Jun 2, 2026
edited
Loading

JSON Schema Validation Passed

@github-actions
Copy link
Copy Markdown

github-actions Bot commented Jun 2, 2026

Linter OK

byteseats.com.storefront.json

Level Code Note
info DCTL1021 missing from iana definitions

@nader-bytesai
add txtConflictMatchingMode=All to ownership TXT
9d3460b 
A re-apply or hostname rotation should replace the _cf-custom-hostname TXT
rather than stack a duplicate, so the record stays unique.
@github-actions github-actions Bot removed Checklist of common problems not complete See PR template and mark *all* checkboxes, even if not applicable. Explain any discrepancies. PR description incomplete The PR description template was not filled in at all, altered or filled in improperly. Test links missing No test links from Online Editor provided labels Jun 2, 2026
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Jun 2, 2026

PR Description Check Passed

All required sections are filled in correctly.

Details 
  OK  Type of change: 1/4 checkboxes ticked
  OK  How Has This Been Tested?: all 3 checkboxes ticked
  OK  Checklist of common problems: 10/10 checkboxes ticked
  OK  Online Editor test results: 1 link(s) found
  OK  Template coverage: all 1 template(s) covered
Labels to remove: Checklist of common problems not complete, Forged editor links, PR description incomplete, Test links missing

PR description check PASSED

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

hostRequired hostRequired is set

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@nader-bytesai