partofmyid/register
1
mirror of https://github.com/partofmyid/register.git synced 2026-06-05 10:36:50 +07:00
Code Issues Projects Releases Packages Wiki Activity

change nix schema

Browse source
This commit is contained in:
satr14washere 2026-03-22 07:15:41 +07:00
commit be1ebe0d15
32 changed files with 238 additions and 344 deletions
Download patch file Download diff file Expand all files Collapse all files

131
docs/example.nix
View file

@ -1,98 +1,49 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "satr14washere";
email = "admin@satr14.my.id";
};
proxy = false;
in
with dns.lib.combinators;
{
A = [
{
address = "203.0.113.1";
ttl = 60 * 60;
}
"203.0.113.2"
(ttl (60 * 60) (a "203.0.113.3"))
];
AAAA = [
"4321:0:1:2:3:4:567:89ab"
];
MX = mx.google;
TXT = [
(
with spf;
strict [
"a:mail.example.com"
google
]
)
];
DMARC = [ (dmarc.postmarkapp "mailto:re+abcdefghijk@dmarc.postmarkapp.com") ];
CAA = letsEncrypt "admin@example.com";
SRV = [
{
service = "sip";
proto = "tcp";
port = 5060;
target = "sip.example.com";
}
];
SSHFP = [
{
algorithm = "ed25519";
fingerprintType = "sha256";
fingerprint = "899EB4AC9285578AFDA3CCBE152EE78D8618B8F3862FEF2703E1FC7011E9B8AA";
}
];
OPENPGPKEY = [
"very long base64 text"
];
HTTPS = [
{
svcPriority = 1;
targetName = ".";
alpn = [
"http/1.1"
"h2"
"h3"
];
ipv4hint = [
"203.0.113.1"
"203.0.113.2"
"203.0.113.3"
];
ipv6hint = [ "4321:0:1:2:3:4:567:89ab" ];
}
];
TLSA = [
{
certUsage = "dane-ee";
selector = "spki";
matchingType = "sha256";
certificate = "899EB4AC9285578AFDA3CCBE152EE78D8618B8F3862FEF2703E1FC7011E9B8AA";
}
];
subdomains = rec {
www.A = [ "203.0.113.4" ];
www2 = host "203.0.113.5" "4321:0:1:2:3:4:567:89bb";
www3 = host "203.0.113.6" null;
www4 = www3;
staging = delegateTo [
"ns1.another.com."
"ns2.another.com."
records = {
A = [
{
address = "203.0.113.1";
ttl = 60 * 60;
}
"203.0.113.2"
(ttl (60 * 60) (a "203.0.113.3"))
];
AAAA = [
"4321:0:1:2:3:4:567:89ab"
];
MX = mx.google;
TXT = [
(
with spf;
strict [
"a:mail.example.com"
google
]
)
];
CNAME = [ "example.com." ];
DMARC = [ (dmarc.postmarkapp "mailto:re+abcdefghijk@dmarc.postmarkapp.com") ];
CAA = letsEncrypt "admin@example.com";
SRV = [
{
service = "sip";
proto = "tcp";
port = 5060;
target = "sip.example.com";
}
];
TLSA = [
{
certUsage = "dane-ee";
selector = "spki";
matchingType = "sha256";
certificate = "899EB4AC9285578AFDA3CCBE152EE78D8618B8F3862FEF2703E1FC7011E9B8AA";
}
];
foo.subdomains.www.CNAME = [ "foo.test.com." ];
};
}

10
domains/_discord.colin.nix
View file

@ -1,12 +1,10 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "ColinLeDev";
};
description = "Discord verification";
proxy = false;
in
with dns.lib.combinators;
{
TXT = [ "dh=279643a6f8677dedb1c5c63d007fc4516149679c" ];
records = {
TXT = [ "dh=279643a6f8677dedb1c5c63d007fc4516149679c" ];
};
}

10
domains/_discord.cutedog5695.nix
View file

@ -1,13 +1,11 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "CuteDog5695";
email = "cutedog5695@gmail.com";
repo = "https://github.com/CuteDog5695/cutedog5695.github.io";
};
proxy = false;
in
with dns.lib.combinators;
{
TXT = [ "dh=a7c19efb0f6bc38b97a33760f6c1ee84df4151b1" ];
records = {
TXT = [ "dh=a7c19efb0f6bc38b97a33760f6c1ee84df4151b1" ];
};
}

10
domains/_discord.justdeveloper.nix
View file

@ -1,13 +1,11 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "JustDeveloper1";
email = "justdeveloper@juststudio.is-a.dev";
repo = "https://github.com/JustDeveloper1/Website";
};
proxy = false;
in
with dns.lib.combinators;
{
TXT = [ "dh=6024027bc233825451e290ac37a4b4a1f838ee70" ];
records = {
TXT = [ "dh=6024027bc233825451e290ac37a4b4a1f838ee70" ];
};
}

10
domains/_discord.nix
View file

@ -1,11 +1,9 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "satr14washere";
};
proxy = false;
in
with dns.lib.combinators;
{
TXT = [ "dh=d509fc9014e196311ed887c2e410cdefa833436e" ];
records = {
TXT = [ "dh=d509fc9014e196311ed887c2e410cdefa833436e" ];
};
}

10
domains/_discord.roki.nix
View file

@ -1,11 +1,9 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "Roki100";
discord = "289479495444987904";
};
in
with dns.lib.combinators;
{
TXT = [ "dh=5633078cd5bfd347a896ddb0f0de017c5423aa06" ];
records = {
TXT = [ "dh=5633078cd5bfd347a896ddb0f0de017c5423aa06" ];
};
}

10
domains/batman.nix
View file

@ -1,11 +1,9 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "shadowe1ite";
};
proxy = true;
in
with dns.lib.combinators;
{
CNAME = [ "shadowe1ite.github.io." ];
records = {
CNAME = [ "shadowe1ite.github.io." ];
};
}

10
domains/c.nix
View file

@ -1,12 +1,10 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "orangci";
email = "c@orangc.xyz";
};
proxy = false;
in
with dns.lib.combinators;
{
CNAME = [ "edge.redirect.pizza." ];
records = {
CNAME = [ "edge.redirect.pizza." ];
};
}

10
domains/colin.nix
View file

@ -1,12 +1,10 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "ColinLeDev";
};
description = "My personal portfolio hosted on my server";
proxy = false;
in
with dns.lib.combinators;
{
CNAME = [ "proxy.col1n.fr." ];
records = {
CNAME = [ "proxy.col1n.fr." ];
};
}

10
domains/cutedog5695.nix
View file

@ -1,13 +1,11 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "CuteDog5695";
email = "cutedog5695@gmail.com";
repo = "https://github.com/CuteDog5695/cutedog5695.github.io";
};
proxy = false;
in
with dns.lib.combinators;
{
CNAME = [ "edge.redirect.pizza." ];
records = {
CNAME = [ "edge.redirect.pizza." ];
};
}

10
domains/elkaff.nix
View file

@ -1,10 +1,8 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "elkhaff";
};
in
with dns.lib.combinators;
{
CNAME = [ "portofolio-pixel.pages.dev." ];
records = {
CNAME = [ "portofolio-pixel.pages.dev." ];
};
}

10
domains/j.nix
View file

@ -1,13 +1,11 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "JustDeveloper1";
email = "support@juststudio.is-a.dev";
repo = "https://github.com/JustStudio7/Website";
};
proxy = false;
in
with dns.lib.combinators;
{
CNAME = [ "edge.redirect.pizza." ];
records = {
CNAME = [ "edge.redirect.pizza." ];
};
}

10
domains/jacob.nix
View file

@ -1,11 +1,9 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "jacobrdale";
};
proxy = false;
in
with dns.lib.combinators;
{
CNAME = [ "hexon404.onrender.com." ];
records = {
CNAME = [ "hexon404.onrender.com." ];
};
}

10
domains/jd.nix
View file

@ -1,13 +1,11 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "JustDeveloper1";
email = "justdeveloper@juststudio.is-a.dev";
repo = "https://github.com/JustDeveloper1/Website";
};
proxy = false;
in
with dns.lib.combinators;
{
CNAME = [ "edge.redirect.pizza." ];
records = {
CNAME = [ "edge.redirect.pizza." ];
};
}

10
domains/job.nix
View file

@ -1,11 +1,9 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "FWEEaaaa1";
};
proxy = false;
in
with dns.lib.combinators;
{
A = [ "128.204.223.115" ];
records = {
A = [ "128.204.223.115" ];
};
}

24
domains/joel.nix
View file

@ -1,19 +1,17 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "joestr";
email = "strasser999@gmail.com";
};
proxy = false;
in
with dns.lib.combinators;
{
A = [ "142.132.173.34" ];
AAAA = [ "2a01:4f8:1c0c:6cc0::1" ];
MX = [
{
exchange = "achlys.infra.joestr.at.";
preference = 10;
}
];
records = {
A = [ "142.132.173.34" ];
AAAA = [ "2a01:4f8:1c0c:6cc0::1" ];
MX = [
{
exchange = "achlys.infra.joestr.at.";
preference = 10;
}
];
};
}

10
domains/js.nix
View file

@ -1,13 +1,11 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "JustDeveloper1";
email = "support@juststudio.is-a.dev";
repo = "https://github.com/JustStudio7/Website";
};
proxy = false;
in
with dns.lib.combinators;
{
CNAME = [ "edge.redirect.pizza." ];
records = {
CNAME = [ "edge.redirect.pizza." ];
};
}

10
domains/just.nix
View file

@ -1,13 +1,11 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "JustDeveloper1";
email = "justdeveloper@juststudio.is-a.dev";
repo = "https://github.com/JustDeveloper1/Website";
};
proxy = false;
in
with dns.lib.combinators;
{
CNAME = [ "edge.redirect.pizza." ];
records = {
CNAME = [ "edge.redirect.pizza." ];
};
}

10
domains/justdev.nix
View file

@ -1,13 +1,11 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "JustDeveloper1";
email = "justdeveloper@juststudio.is-a.dev";
repo = "https://github.com/JustDeveloper1/Website";
};
proxy = false;
in
with dns.lib.combinators;
{
CNAME = [ "edge.redirect.pizza." ];
records = {
CNAME = [ "edge.redirect.pizza." ];
};
}

10
domains/justdeveloper.nix
View file

@ -1,13 +1,11 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "JustDeveloper1";
email = "justdeveloper@juststudio.is-a.dev";
repo = "https://github.com/JustDeveloper1/Website";
};
proxy = false;
in
with dns.lib.combinators;
{
CNAME = [ "edge.redirect.pizza." ];
records = {
CNAME = [ "edge.redirect.pizza." ];
};
}

10
domains/juststudio.nix
View file

@ -1,13 +1,11 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "JustDeveloper1";
email = "support@juststudio.is-a.dev";
repo = "https://github.com/JustStudio7/Website";
};
proxy = false;
in
with dns.lib.combinators;
{
CNAME = [ "edge.redirect.pizza." ];
records = {
CNAME = [ "edge.redirect.pizza." ];
};
}

10
domains/katz.nix
View file

@ -1,11 +1,9 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "Bananalolok";
};
proxy = false;
in
with dns.lib.combinators;
{
A = [ "69.197.135.205" ];
records = {
A = [ "69.197.135.205" ];
};
}

10
domains/no-one-is.nix
View file

@ -1,12 +1,10 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "EducatedSuddenBucket";
email = "me@esb.is-a.dev";
};
proxy = false;
in
with dns.lib.combinators;
{
CNAME = [ "educatedsuddenbucket-github-io.onrender.com." ];
records = {
CNAME = [ "educatedsuddenbucket-github-io.onrender.com." ];
};
}

10
domains/pxl.nix
View file

@ -1,11 +1,9 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "heypxl";
};
proxy = false;
in
with dns.lib.combinators;
{
CNAME = [ "heypxl.github.io." ];
records = {
CNAME = [ "heypxl.github.io." ];
};
}

10
domains/rchessauth.nix
View file

@ -1,11 +1,9 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "vortexprime24";
};
proxy = false;
in
with dns.lib.combinators;
{
CNAME = [ "fire.hackclub.app." ];
records = {
CNAME = [ "fire.hackclub.app." ];
};
}

10
domains/roki.nix
View file

@ -1,12 +1,10 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "Roki100";
discord = "289479495444987904";
};
proxy = false;
in
with dns.lib.combinators;
{
CNAME = [ "edge.redirect.pizza." ];
records = {
CNAME = [ "edge.redirect.pizza." ];
};
}

10
domains/satr14.nix
View file

@ -1,10 +1,8 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "satr14washere";
};
in
with dns.lib.combinators;
{
CNAME = [ "5th-site.pages.dev." ];
records = {
CNAME = [ "5th-site.pages.dev." ];
};
}

10
domains/stef.nix
View file

@ -1,12 +1,10 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "Stef-00012";
email = "admin@stefdp.lol";
};
proxy = false;
in
with dns.lib.combinators;
{
CNAME = [ "proxy.stefdp.lol." ];
records = {
CNAME = [ "proxy.stefdp.lol." ];
};
}

10
domains/ukriu.nix
View file

@ -1,13 +1,11 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "ukriu";
email = "partofmyid@ukriu.com";
};
description = "my website";
proxy = false;
in
with dns.lib.combinators;
{
CNAME = [ "ukriu.pages.dev." ];
records = {
CNAME = [ "ukriu.pages.dev." ];
};
}

10
domains/you-are.nix
View file

@ -1,12 +1,10 @@
{ dns, ... }:
let
{ dns, ... }: with dns.lib.combinators; {
owner = {
username = "Stef-00012";
email = "admin@stefdp.com";
};
proxy = false;
in
with dns.lib.combinators;
{
CNAME = [ "proxy.stefdp.com." ];
records = {
CNAME = [ "proxy.stefdp.com." ];
};
}

3
flake.nix
View file

@ -24,7 +24,7 @@
in
{
name = key;
value = import (./domains + "/${name}") { inherit dns; };
value = (import (./domains + "/${name}") { inherit dns; }).records;
}
) domainFiles;
in
@ -41,6 +41,7 @@
};
NS = domain.nameservers;
# note: Cloudflare ignores SOA and NS records uploaded via Zone File, they are included just so that dns.nix builds a valid zone file.
CNAME = [ "website-e7n.pages.dev." ];
inherit subdomains;
}
)

150
scripts/migrate-json-to-nix.py → scripts/migrate-nix.py
View file

@ -6,7 +6,7 @@ Reads each JSON domain config and generates a corresponding .nix file
following the format from docs/example.nix.
Usage:
python3 scripts/migrate-json-to-nix.py [--dry-run] [--delete-json]
python3 scripts/migrate-nix.py [--dry-run] [--delete-json]
Options:
--dry-run Print generated .nix content to stdout without writing files
@ -15,7 +15,6 @@ Options:
import json
import sys
import os
from pathlib import Path
DOMAINS_DIR = Path(__file__).resolve().parent.parent / "domains"
@ -31,37 +30,36 @@ def json_to_nix(data: dict) -> str:
lines = []
# Header
lines.append("{ dns, ... }: let")
# Owner block
owner_lines = []
if owner.get("username"):
owner_lines.append(f' username = "{owner["username"]}";')
if owner.get("email"):
owner_lines.append(f' email = "{owner["email"]}";')
if owner.get("discord"):
owner_lines.append(f' discord = "{owner["discord"]}";')
if owner.get("repo"):
owner_lines.append(f' repo = "{owner["repo"]}";')
# Header — no let block, just the function head with `with`
lines.append("{ dns, ... }: with dns.lib.combinators; {")
# Owner block as a top-level attribute
lines.append(" owner = {")
for ol in owner_lines:
lines.append(ol)
if owner.get("username"):
lines.append(f' username = "{escape_nix_string(owner["username"])}";')
if owner.get("email"):
lines.append(f' email = "{escape_nix_string(owner["email"])}";')
if owner.get("discord"):
lines.append(f' discord = "{escape_nix_string(owner["discord"])}";')
if owner.get("repo"):
lines.append(f' repo = "{escape_nix_string(owner["repo"])}";')
lines.append(" };")
# Description as a top-level attribute
if description is not None:
lines.append(f' description = "{escape_nix_string(description)}";')
# Proxy as a top-level attribute
if proxy is not None:
lines.append(f" proxy = {'true' if proxy else 'false'};")
lines.append("in with dns.lib.combinators; {")
# Records
# Records nested under `records`
record_lines = build_record_lines(record)
for rl in record_lines:
lines.append(rl)
if record_lines:
lines.append(" records = {")
for rl in record_lines:
lines.append(rl)
lines.append(" };")
lines.append("}")
lines.append("")
@ -78,129 +76,131 @@ def escape_nix_string(s: str) -> str:
def build_record_lines(record: dict) -> list[str]:
"""Build the Nix record lines from the JSON record dict."""
"""Build the Nix record lines from the JSON record dict.
These are indented with 4 spaces since they sit inside `records = { ... };`.
"""
lines = []
if "A" in record:
values = record["A"]
if isinstance(values, list):
if len(values) == 1:
lines.append(f' A = [ "{values[0]}" ];')
lines.append(f' A = [ "{values[0]}" ];')
else:
lines.append(" A = [")
lines.append(" A = [")
for v in values:
lines.append(f' "{v}"')
lines.append(" ];")
lines.append(f' "{v}"')
lines.append(" ];")
else:
lines.append(f' A = [ "{values}" ];')
lines.append(f' A = [ "{values}" ];')
if "AAAA" in record:
values = record["AAAA"]
if isinstance(values, list):
if len(values) == 1:
lines.append(f' AAAA = [ "{values[0]}" ];')
lines.append(f' AAAA = [ "{values[0]}" ];')
else:
lines.append(" AAAA = [")
lines.append(" AAAA = [")
for v in values:
lines.append(f' "{v}"')
lines.append(" ];")
lines.append(f' "{v}"')
lines.append(" ];")
else:
lines.append(f' AAAA = [ "{values}" ];')
lines.append(f' AAAA = [ "{values}" ];')
if "CNAME" in record:
value = record["CNAME"]
if isinstance(value, list):
value = value[0]
lines.append(f' CNAME = [ "{value}." ];')
lines.append(f' CNAME = [ "{ensure_fqdn(value)}" ];')
if "ALIAS" in record:
value = record["ALIAS"]
if isinstance(value, list):
value = value[0]
# ALIAS is typically handled as CNAME in dns.nix
lines.append(f' CNAME = [ "{value}." ];')
lines.append(f' CNAME = [ "{ensure_fqdn(value)}" ];')
if "MX" in record:
values = record["MX"]
if isinstance(values, list):
lines.append(" MX = [")
lines.append(" MX = [")
for i, v in enumerate(values):
# MX records need priority; default to (i+1)*10
priority = (i + 1) * 10
lines.append(" {")
lines.append(f' exchange = "{ensure_fqdn(v)}";')
lines.append(f" preference = {priority};")
lines.append(" }")
lines.append(" ];")
lines.append(" {")
lines.append(f' exchange = "{ensure_fqdn(v)}";')
lines.append(f" preference = {priority};")
lines.append(" }")
lines.append(" ];")
else:
lines.append(" MX = [")
lines.append(" {")
lines.append(f' exchange = "{ensure_fqdn(values)}";')
lines.append(" preference = 10;")
lines.append(" }")
lines.append(" ];")
lines.append(" MX = [")
lines.append(" {")
lines.append(f' exchange = "{ensure_fqdn(values)}";')
lines.append(" preference = 10;")
lines.append(" }")
lines.append(" ];")
if "TXT" in record:
values = record["TXT"]
if isinstance(values, list):
if len(values) == 1:
lines.append(f' TXT = [ "{escape_nix_string(values[0])}" ];')
lines.append(f' TXT = [ "{escape_nix_string(values[0])}" ];')
else:
lines.append(" TXT = [")
lines.append(" TXT = [")
for v in values:
lines.append(f' "{escape_nix_string(v)}"')
lines.append(" ];")
lines.append(f' "{escape_nix_string(v)}"')
lines.append(" ];")
else:
lines.append(f' TXT = [ "{escape_nix_string(values)}" ];')
lines.append(f' TXT = [ "{escape_nix_string(values)}" ];')
if "NS" in record:
values = record["NS"]
if isinstance(values, list):
if len(values) == 1:
lines.append(f' NS = [ "{ensure_fqdn(values[0])}" ];')
lines.append(f' NS = [ "{ensure_fqdn(values[0])}" ];')
else:
lines.append(" NS = [")
lines.append(" NS = [")
for v in values:
lines.append(f' "{ensure_fqdn(v)}"')
lines.append(" ];")
lines.append(f' "{ensure_fqdn(v)}"')
lines.append(" ];")
else:
lines.append(f' NS = [ "{ensure_fqdn(values)}" ];')
lines.append(f' NS = [ "{ensure_fqdn(values)}" ];')
if "SRV" in record:
values = record["SRV"]
if isinstance(values, list):
lines.append(" SRV = [")
lines.append(" SRV = [")
for srv in values:
lines.append(" {")
lines.append(" {")
if "service" in srv:
lines.append(f' service = "{srv["service"]}";')
lines.append(f' service = "{srv["service"]}";')
if "proto" in srv:
lines.append(f' proto = "{srv["proto"]}";')
lines.append(f' proto = "{srv["proto"]}";')
if "port" in srv:
lines.append(f" port = {srv['port']};")
lines.append(f" port = {srv['port']};")
if "priority" in srv:
lines.append(f" priority = {srv['priority']};")
lines.append(f" priority = {srv['priority']};")
if "weight" in srv:
lines.append(f" weight = {srv['weight']};")
lines.append(f" weight = {srv['weight']};")
if "target" in srv:
lines.append(f' target = "{ensure_fqdn(srv["target"])}";')
lines.append(" }")
lines.append(" ];")
lines.append(f' target = "{ensure_fqdn(srv["target"])}";')
lines.append(" }")
lines.append(" ];")
if "CAA" in record:
values = record["CAA"]
if isinstance(values, list):
lines.append(" CAA = [")
lines.append(" CAA = [")
for caa in values:
lines.append(" {")
lines.append(" {")
if "flags" in caa:
lines.append(f" flags = {caa['flags']};")
lines.append(f" flags = {caa['flags']};")
if "tag" in caa:
lines.append(f' tag = "{caa["tag"]}";')
lines.append(f' tag = "{caa["tag"]}";')
if "value" in caa:
lines.append(f' value = "{escape_nix_string(caa["value"])}";')
lines.append(" }")
lines.append(" ];")
lines.append(f' value = "{escape_nix_string(caa["value"])}";')
lines.append(" }")
lines.append(" ];")
return lines