DNS Management API

Overview

The DNS API provides full management of DNS zones and records. All zones are hosted on VPS.org's authoritative nameservers with automatic BIND9 zone file generation and deployment.

Nameserver Infrastructure

ns1.vps.org (38.248.6.195) - Primary master with DNSSEC inline-signing
ns2.vps.org (38.248.6.196) - Secondary slave
ns3.vps.org (38.248.6.197) - Secondary slave

Key Features

Automatic BIND9 zone file generation and deployment
Zone transfers via TSIG authentication (master-slave replication)
Support for all major DNS record types (A, AAAA, CNAME, MX, TXT, NS, SRV, CAA)
Domain name filtering and UUID-based zone identification
Nested routes for zone-specific record management

Authentication

All DNS API requests require Bearer token authentication. Generate API tokens from your account dashboard at /account/developers/ with the following permissions:

dns:list - View DNS zones and records
dns:create - Create new zones and records
dns:update - Modify existing zones and records
dns:delete - Delete zones and records
dns:* - Full DNS management access

Example

Authorization: Bearer vps_abc123def456...

Important: API tokens are shown only once during creation. Store them securely. If you lose a token, you must generate a new one.

ACQUIRE /api/v1/dns-zones/

Enumera Omnes Zonas DNS

Retrieve a paginated list of all DNS zones owned by the authenticated user. Supports filtering by domain name.

Parametri Quaestionis

Parametrum	Typus	Requisitum	Descriptio
`domain`	string	Non	Filter zones by exact domain name (e.g., `example.com`)

Exemplum Petitionis

cURL

Python

JavaScript

curl -X GET "https://admin.vps.org/api/v1/dns-zones/" \
  -H "Authorization: Bearer YOUR_API_TOKEN"

import requests

url = "https://admin.vps.org/api/v1/dns-zones/"
headers = {"Authorization": "Bearer YOUR_API_TOKEN"}

response = requests.get(url, headers=headers)
print(response.json())

const response = await fetch('https://admin.vps.org/api/v1/dns-zones/', {
  headers: {'Authorization': 'Bearer YOUR_API_TOKEN'}
});

const zones = await response.json();
console.log(zones);

Exemplum Responsionis

[
  {
    "uuid": "abc123-def456-ghi789",
    "domain": "example.com",
    "created_at": "2024-01-15T10:30:00Z",
    "record_count": 12
  },
  {
    "uuid": "xyz789-uvw456-rst123",
    "domain": "myapp.io",
    "created_at": "2024-06-20T14:15:00Z",
    "record_count": 8
  }
]

Response Fields

Field	Typus	Descriptio
`uuid`	string	Unique zone identifier (used in API requests)
`domain`	string	Domain name for this DNS zone
`created_at`	datetime	Zone creation timestamp (ISO 8601 format)
`record_count`	integer	Total number of DNS records in this zone

Codices Status Responsorum

200	Successfully retrieved DNS zones list
401	Unauthorized - Invalid or missing API token
403	Forbidden - Token lacks `dns:list` permission

ACQUIRE /api/v1/dns-zones/{uuid}/

Get DNS Zone Details

Retrieve detailed information about a specific DNS zone, including all records.

Parametri Semitae

Parametrum	Typus	Requisitum	Descriptio
`uuid`	string	Ita	Unique zone identifier

Exemplum Responsionis

{
  "uuid": "abc123-def456-ghi789",
  "domain": "example.com",
  "created_at": "2024-01-15T10:30:00Z",
  "record_count": 5,
  "records": [
    {
      "uuid": "rec-001",
      "record_type": "A",
      "name": "@",
      "value": "192.0.2.1",
      "ttl": 3600,
      "priority": null,
      "created_at": "2024-01-15T10:30:00Z"
    },
    {
      "uuid": "rec-002",
      "record_type": "MX",
      "name": "@",
      "value": "mail.example.com",
      "ttl": 3600,
      "priority": 10,
      "created_at": "2024-01-15T10:32:00Z"
    }
  ]
}

Codices Status Responsorum

200	Successfully retrieved zone details
404	Zone not found or not owned by user

POST /api/v1/dns-zones/

Create DNS Zone

Create a new DNS zone for a domain. The zone will be immediately deployed to VPS.org nameservers.

Parametri Corporis Petitionis

Parametrum	Typus	Requisitum	Descriptio
`domain`	string	Ita	Domain name (e.g., `example.com`)

Exemplum Petitionis

cURL

Python

JavaScript

curl -X POST "https://admin.vps.org/api/v1/dns-zones/" \
  -H "Authorization: Bearer YOUR_API_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"domain": "newdomain.com"}'

import requests

url = "https://admin.vps.org/api/v1/dns-zones/"
headers = {
    "Authorization": "Bearer YOUR_API_TOKEN",
    "Content-Type": "application/json"
}
data = {"domain": "newdomain.com"}

response = requests.post(url, headers=headers, json=data)
print(response.json())

const response = await fetch('https://admin.vps.org/api/v1/dns-zones/', {
  method: 'POST',
  headers: {
    'Authorization': 'Bearer YOUR_API_TOKEN',
    'Content-Type': 'application/json'
  },
  body: JSON.stringify({domain: 'newdomain.com'})
});

const zone = await response.json();
console.log(zone);

Exemplum Responsionis

{
  "uuid": "new-zone-uuid",
  "domain": "newdomain.com",
  "created_at": "2026-01-18T16:45:00Z",
  "record_count": 0,
  "records": []
}

Codices Status Responsorum

201	DNS zone created successfully
400	Bad Request - Invalid domain name or zone already exists
403	Forbidden - Token lacks `dns:create` permission

DELE /api/v1/dns-zones/{uuid}/

Delete DNS Zone

Permanently delete a DNS zone and all associated records. This action cannot be undone.

Parametri Semitae

Parametrum	Typus	Requisitum	Descriptio
`uuid`	string	Ita	Unique zone identifier

Codices Status Responsorum

204	Zone deleted successfully (no response body)
403	Forbidden - Token lacks `dns:delete` permission
404	Zone not found

ACQUIRE /api/v1/dns-zones/{uuid}/records/

List DNS Records in Zone

Retrieve all DNS records for a specific zone (nested route).

Parametri Semitae

Parametrum	Typus	Requisitum	Descriptio
`uuid`	string	Ita	Zone UUID

Exemplum Petitionis

curl -X GET "https://admin.vps.org/api/v1/dns-zones/{uuid}/records/" \
  -H "Authorization: Bearer YOUR_API_TOKEN"

Exemplum Responsionis

[
  {
    "uuid": "rec-001",
    "record_type": "A",
    "name": "@",
    "value": "192.0.2.1",
    "ttl": 3600,
    "priority": null,
    "created_at": "2024-01-15T10:30:00Z"
  },
  {
    "uuid": "rec-002",
    "record_type": "MX",
    "name": "@",
    "value": "mail.example.com",
    "ttl": 3600,
    "priority": 10,
    "created_at": "2024-01-15T10:32:00Z"
  }
]

POST /api/v1/dns-zones/{uuid}/records/

Create DNS Record in Zone

Add a new DNS record to a specific zone (nested route).

Parametri Corporis Petitionis

Parametrum	Typus	Requisitum	Descriptio
`record_type`	string	Ita	Record type: A, AAAA, CNAME, MX, TXT, NS, SRV, CAA
`name`	string	Ita	Record name (`@` for root, subdomain, or FQDN)
`value`	string	Ita	Record value (IP address, hostname, text)
`ttl`	integer	No	Time to live in seconds (default: 3600)
`priority`	integer	For MX/SRV	Priority (required for MX and SRV records)

Exemplum Petitionis

cURL

Python

curl -X POST "https://admin.vps.org/api/v1/dns-zones/{uuid}/records/" \
  -H "Authorization: Bearer YOUR_API_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{
    "record_type": "A",
    "name": "www",
    "value": "192.0.2.1",
    "ttl": 3600
  }'

import requests

url = f"https://admin.vps.org/api/v1/dns-zones/{zone_uuid}/records/"
headers = {
    "Authorization": "Bearer YOUR_API_TOKEN",
    "Content-Type": "application/json"
}
data = {
    "record_type": "A",
    "name": "www",
    "value": "192.0.2.1",
    "ttl": 3600
}

response = requests.post(url, headers=headers, json=data)
print(response.json())

Codices Status Responsorum

201	DNS record created successfully
400	Bad Request - Invalid parameters or validation error (e.g., MX record missing priority)

GET PUT PATCH DELETE /api/v1/dns-records/{uuid}/

Manage DNS Records (Direct Access)

Full CRUD operations on individual DNS records using record UUID.

Available Operations

GET /api/v1/dns-records/{uuid}/ - Retrieve record details
PUT /api/v1/dns-records/{uuid}/ - Full update (all fields required)
PATCH /api/v1/dns-records/{uuid}/ - Partial update (only changed fields)
DELETE /api/v1/dns-records/{uuid}/ - Delete record

Query Parameters (for GET /api/v1/dns-records/)

Parameter	Typus	Descriptio
`zone`	string	Filter records by zone UUID
`record_type`	string	Filter by record type (A, AAAA, MX, etc.)

Example: Update TTL of a Record

curl -X PATCH "https://admin.vps.org/api/v1/dns-records/{rec-uuid}/" \
  -H "Authorization: Bearer YOUR_API_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{"ttl": 1800}'

Supported DNS Record Types

Typus	Purpose	Example Value	Priority Required
A	Maps domain to IPv4 address	192.0.2.1	Non
AAAA	Maps domain to IPv6 address	2001:0db8::1	Non
CNAME	Creates alias to another domain	example.com	Non
MX	Mail server for domain	mail.example.com	Ita
TXT	Text record (SPF, DKIM, verification)	v=spf1 include:_spf.google.com ~all	Non
NS	Nameserver delegation	ns1.example.com	Non
SRV	Service location record	10 5060 sip.example.com	Ita
CAA	Certificate authority authorization	0 issue "letsencrypt.org"	Non

Best Practices

TTL Configuration

Production (stable): 3600-86400 seconds (1-24 hours)
Before migration: 300-600 seconds (5-10 minutes) - Lower TTL before planned changes
Development: 300-1800 seconds (5-30 minutes) for faster testing

Common Patterns

Root domain (@): Use A/AAAA records, not CNAME
www subdomain: Can use CNAME pointing to root or separate A record
Email (MX): Always include priority, lower number = higher priority
CNAME: Cannot coexist with other record types for same name

Security

CAA Records: Specify which CAs can issue certificates
SPF/DKIM/DMARC: Configure email authentication to prevent spoofing
Regular Audits: Review DNS records quarterly, remove unused entries

Error Handling

Common Errors

Status Code	Error	Solution
400	Invalid domain name	Ensure domain follows DNS naming conventions
400	MX record requires priority	Include `priority` field for MX and SRV records
401	Invalid API token	Check token format (must start with `vps_`)
403	Missing permission	Generate new token with required `dns:*` permissions
404	Zone/record not found	Verify UUID and ensure resource belongs to your account

Example Error Response

{
  "detail": "MX records require a priority value",
  "error_code": "validation_error",
  "field": "priority"
}

Testing DNS Changes

Verify Record Propagation

# Query A record
dig example.com A

# Query specific nameserver
dig @ns1.vps.org example.com

# Query MX records
dig example.com MX

# Check all records
dig example.com ANY

Using Online Tools

whatsmydns.net: Check global DNS propagation
dnschecker.org: Multi-location DNS lookup
mxtoolbox.com: Email-related DNS testing

VPS.org API

DNS Management API

Overview

Nameserver Infrastructure

Key Features

Authentication

Example

Enumera Omnes Zonas DNS

Parametri Quaestionis

Exemplum Petitionis

Exemplum Responsionis

Response Fields

Codices Status Responsorum

Get DNS Zone Details

Parametri Semitae

Exemplum Responsionis

Codices Status Responsorum

Create DNS Zone

Parametri Corporis Petitionis

Exemplum Petitionis

Exemplum Responsionis

Codices Status Responsorum

Delete DNS Zone

Parametri Semitae

Codices Status Responsorum

List DNS Records in Zone

Parametri Semitae

Exemplum Petitionis

Exemplum Responsionis

Create DNS Record in Zone

Parametri Corporis Petitionis

Exemplum Petitionis

Codices Status Responsorum

Manage DNS Records (Direct Access)

Available Operations

Query Parameters (for GET /api/v1/dns-records/)

Example: Update TTL of a Record

Supported DNS Record Types

Best Practices

TTL Configuration

Common Patterns

Security

Error Handling

Common Errors

Example Error Response

Testing DNS Changes

Verify Record Propagation

Using Online Tools