## POST /api/v2/domains/{id}/dnssec-auto **Enable or disable automatic DNSSEC** Toggle automatic DNSSEC enrollment. Send `action: "include"` to re-enroll the domain or `action: "exclude"` to opt the domain out; unknown fields are rejected so clients do not assume force or refresh options exist. `include` does not bypass nameserver propagation or the 72-hour cooldown after nameserver changes: the returned state may still be `pending` or `blocked` with `blockedUntil`, `blockReason`, and `nameserversChangedAt`. Use this automatic flow for domains delegated to HostUp-managed nameservers such as `primary.ns.hostup.se` and `secondary.ns.hostup.se`; use manual `POST /api/v2/domains/{id}/dnssec` only when an external DNS provider or registrar workflow requires caller-supplied DS/KEY data. ### Related Endpoints - `GET /api/v2/domains/{id}/dnssec-auto`: Get automatic DNSSEC status - `GET /api/v2/domains/{id}`: Get domain details - `PATCH /api/v2/domains/{id}`: Update domain settings ### Headers - `Accept`: application/json - `Authorization`: Bearer YOUR_API_KEY - Required API scope: `write:domains` - `Content-Type`: application/json ### Parameters - `id` (path, string, required): Public domain ID. Get it from GET /api/v2/domains `data[].id`. Do not invent this value; use the exact ID returned by the referenced API response. Example: `dom_01hxa3b4c5d6e7f8g9h0j1k2m3` ### Request Body - `action` (string, required) Example: `exclude` Allowed values: exclude, include ### Request Examples #### Disable automatic DNSSEC ```bash curl -X POST "https://cloud.hostup.se/api/v2/domains/dom_01hxa3b4c5d6e7f8g9h0j1k2m3/dnssec-auto" \ -H "Authorization: Bearer YOUR_API_KEY" \ -H "Accept: application/json" \ -H "Content-Type: application/json" \ -d '{ "action": "exclude" }' ``` ```json { "action": "exclude" } ``` #### Enable automatic DNSSEC ```bash curl -X POST "https://cloud.hostup.se/api/v2/domains/dom_01hxa3b4c5d6e7f8g9h0j1k2m3/dnssec-auto" \ -H "Authorization: Bearer YOUR_API_KEY" \ -H "Accept: application/json" \ -H "Content-Type: application/json" \ -d '{ "action": "include" }' ``` ```json { "action": "include" } ``` ### Response Schema - `domainName` (string | null, required) Example: `example.se` - `status` (string, required) Example: `blocked` Allowed values: active, inactive, excluded, pending, error, blocked - `reason` (string | null, required) Example: `Nameservers changed recently; automatic DNSSEC is paused until the cooldown period ends.` - `isEnabled` (boolean, required) Example: `true` - `isBlocked` (boolean, required) Example: `true` - `blockedUntil` (string | null, required) Example: `2026-04-30T12:00:00.000Z` - `blockReason` (string | null, required) Example: `Nameservers changed recently; automatic DNSSEC is paused until the cooldown period ends.` - `lastCheckedAt` (string | null, required) Example: `2026-04-27T12:00:00.000Z` - `lastError` (string | null, required) - `nameserversChangedAt` (string | null, required) Example: `2026-04-26T09:30:00.000Z` ### Responses #### 200 - Updated automatic DNSSEC state. ```json { "domainName": "example.se", "status": "blocked", "reason": "Nameservers changed recently; automatic DNSSEC is paused until the cooldown period ends.", "isEnabled": true, "isBlocked": true, "blockedUntil": "2026-04-30T12:00:00.000Z", "blockReason": "Nameservers changed recently; automatic DNSSEC is paused until the cooldown period ends.", "lastCheckedAt": "2026-04-27T12:00:00.000Z", "lastError": null, "nameserversChangedAt": "2026-04-26T09:30:00.000Z" } ``` #### 400 - Invalid request. The response body is an RFC 7807 Problem Details document. ```json { "type": "https://developer.hostup.se/errors/invalid_request", "title": "Invalid request", "status": 400, "detail": "The request body failed validation.", "code": "invalid_request", "instance": "/api/v2/resource", "requestId": "req_01hxa3b4c5d6e7f8g9h0j1k2m3", "timestamp": "2026-04-27T12:34:56.000Z", "errors": [ { "pointer": "/items/0/domainName", "detail": "`domainName` is required.", "code": "invalid_request" } ] } ``` #### 401 - Unauthorized. Authentication is required. ```json { "type": "https://developer.hostup.se/errors/unauthorized", "title": "Unauthorized", "status": 401, "detail": "Authentication is required.", "code": "unauthorized", "instance": "/api/v2/resource", "requestId": "req_01hxa3b4c5d6e7f8g9h0j1k2m3", "timestamp": "2026-04-27T12:34:56.000Z" } ``` #### 403 - Forbidden. The caller lacks a required scope or does not own the resource. ```json { "type": "https://developer.hostup.se/errors/forbidden", "title": "Forbidden", "status": 403, "detail": "The caller lacks a required scope or does not own the resource.", "code": "forbidden", "instance": "/api/v2/resource", "requestId": "req_01hxa3b4c5d6e7f8g9h0j1k2m3", "timestamp": "2026-04-27T12:34:56.000Z" } ``` #### 404 - Not found. The resource does not exist or is not owned by the caller. ```json { "type": "https://developer.hostup.se/errors/not_found", "title": "Not found", "status": 404, "detail": "The requested resource could not be found.", "code": "not_found", "instance": "/api/v2/resource", "requestId": "req_01hxa3b4c5d6e7f8g9h0j1k2m3", "timestamp": "2026-04-27T12:34:56.000Z" } ``` #### 429 - Rate limited. Retry after the limit resets. 429 responses include `Retry-After` seconds plus `X-RateLimit-*` headers. ```json { "type": "https://developer.hostup.se/errors/rate_limit_exceeded", "title": "Too many requests", "status": 429, "detail": "Too many requests. Retry after the limit resets.", "code": "rate_limit_exceeded", "instance": "/api/v2/resource", "requestId": "req_01hxa3b4c5d6e7f8g9h0j1k2m3", "timestamp": "2026-04-27T12:34:56.000Z" } ``` #### 500 - Internal error. Retry later or contact support if the issue persists. ```json { "type": "https://developer.hostup.se/errors/internal_error", "title": "Internal server error", "status": 500, "detail": "An unexpected error occurred. Retry later or contact support if the issue persists.", "code": "internal_error", "instance": "/api/v2/resource", "requestId": "req_01hxa3b4c5d6e7f8g9h0j1k2m3", "timestamp": "2026-04-27T12:34:56.000Z" } ```