Designate DNS – create TLD using valid Unicode string

You likely need to use the ascii representation for unicode domains, see https://en.wikipedia.org/wiki/Internationalized_domain_name , same as you would need to do for creating a zone matching that TLD later.

I think this is a valid bug as we should be supporting Internationalized Domain Names (IDN) in a user friendly way.

There are already TLDs using unicode characters: https://www.iana.org/domains/root/db

There is no reason the Designate tools can't handle the unicode character conversion to punycode on behalf of the user.

For example, I can use dig to resolve "人民网.中国", we should be able to handle those domains in Designate.

The Designate objects are performing a regex on the input value here: https://opendev.org/openstack/designate/src/branch/master/designate/objects/fields.py#L293

With the regex here:
https://opendev.org/openstack/designate/src/branch/master/designate/objects/fields.py#L98

Making the assumption that the TLD will be ascii only.

This is inconsistent with the API which declares it supports UTF-8 and accepts the strings in other fields such as the description of a TLD.

Which version of dig supports this? 9.11.3-1ubuntu1.14-Ubuntu returns nxdomain for me.

While I think that the API should only deal with the punycode representation at that is also the only the to actually exist in the DNS system itself, it may be reasonable to add conversion support into the client, although even that may be confusing. If e.g. showing a zone or tld, should the name be shown in punycode or UTF-8? Users may expect the latter, but that could break existing applications expecting the former? So my suggestion would be to stick to the existing state and just add some documentation showing users how to convert their UTF-8 labels to punycode.

Here is the output:
$ dig 人民网.中国

; <<>> DiG 9.11.27-RedHat-9.11.27-1.fc33 <<>> 人民网.中国
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 62795
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;人民网.中国. IN A

;; ANSWER SECTION:
人民网.中国. 7198 IN A 58.68.146.208

;; Query time: 3731 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Mon Mar 15 08:38:30 PDT 2021
;; MSG SIZE rcvd: 70

Or

dig 人民网.中国

; <<>> DiG 9.16.1-Ubuntu <<>> 人民网.中国
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 29429
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;人民网.中国. IN A

;; ANSWER SECTION:
人民网.中国. 6787 IN A 58.68.146.208

;; Query time: 0 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Mon Mar 15 15:45:21 UTC 2021
;; MSG SIZE rcvd: 70

The problem I have here is we are inconsistent in our API usage of UTF-8. JSON is UTF-8, the documentation lists that we return UTF-8 content, the API accepts and handles UTF-8 strings for other fields such as the description fields, and by the RFCs TLDs support UTF-8.
I think this can be corrected in designate in a way that does not break existing usage, but we need to embrace other cultures and languages.

[Expired for Designate because there has been no activity for 60 days.]