From HEXONET Wiki
(→Domain Registration) |
|||
(14 intermediate revisions by one user not shown) | |||
Line 1: | Line 1: | ||
{{Infobox nTLD | {{Infobox nTLD | ||
| name = .APP | | name = .APP | ||
− | | image =[[File: | + | | image =[[File:App.jpg]]<br><br> |
| introduced = 2018 | | introduced = 2018 | ||
− | | category = Technology | + | | category = Technology, Entertainment |
| registry = Charleston Road Registry | | registry = Charleston Road Registry | ||
− | | idn capable = | + | | idn capable = Yes |
− | | webpage = [https://www.hexonet.net/ Register .APP] | + | | webpage = [https://www.hexonet.net/index?preferredTLD=app Register .APP] |
− | | legal = [ Registry Policies] | + | | legal = [https://policies.google.com/terms Registry Policies] |
}} | }} | ||
− | {{#repositoryinfo: | + | {{#repositoryinfo: CRR-LIVE-1API | app }} |
{{Sidebar}} | {{Sidebar}} | ||
<div style="font-size: 250%;">'''.APP'''</div><br/> | <div style="font-size: 250%;">'''.APP'''</div><br/> | ||
− | .APP | + | Apps make the mobile world go ‘round, and now they have their own more secure home on the web: the .app domain, the most relevant TLD for mobile apps. You can use your .app name to showcase a unique and trustworthy destination, as a relevant download link, for deep linking, or for sharing screenshots, release notes, and reviews. Get your .app domain now to start sharing your app with the world. |
+ | |||
+ | <b>.APP Security Requirements</b> | ||
+ | |||
+ | .app is a secured namespace, meaning that websites using a .app domain require an SSL certificate to work; .app websites can only be accessed by web browsers using HTTPS through an encrypted and secured connection. | ||
+ | |||
+ | SSL certificates may be purchased through the HEXONET Control Panel or via API. More information on SSL certificates, including purchasing and obtaining certificates and API documentation, may be found [https://wiki.hexonet.net/wiki/SSL here]. | ||
+ | |||
+ | .app domain names that do not have an SSL certificate configured may still be used for email and other non-browser based uses. | ||
+ | |||
+ | <b>Important:</b> Please note that upon registration, registrants of .app must be aware of this security requirement, including that: | ||
+ | * .app is a secure namespace, and | ||
+ | * HTTPS is required for all .app websites, as they will be encrypted by default and will not allow insecure connections | ||
+ | |||
+ | Additionally, registrants must be provided with resources about configuring HTTPS and obtaining an SSL certificate for their domain. | ||
__TOC__ | __TOC__ | ||
Line 87: | Line 101: | ||
nameserver0 = (NAMESERVER) | nameserver0 = (NAMESERVER) | ||
nameserver1 = (NAMESERVER) | nameserver1 = (NAMESERVER) | ||
+ | X-ACCEPT-SSL-REQUIREMENT=1 | ||
</pre> | </pre> | ||
Line 140: | Line 155: | ||
= TLD specific = | = TLD specific = | ||
− | === | + | === .APP Security Requirement Additional Information === |
+ | |||
+ | Google Registry has added .app to the [https://hstspreload.org/ HSTS preload list], which means that all websites using this TLD will be encrypted by default and will not allow insecure connections. Registrants must configure HTTPS serving for their domains in order for them to work in all major browsers. That is, they need to configure an SSL certificate in order for their .app domain to function in browsers. | ||
+ | |||
+ | <b>Important:</b> Please note that upon registration, registrants of .app must be aware of the security requirement outlined above, including that: | ||
+ | * .app is a secure namespace, and | ||
+ | * HTTPS is required for all .app websites, as they will be encrypted by default and will not allow insecure connections | ||
+ | |||
+ | Additionally, registrants must be provided with resources about configuring HTTPS and obtaining an SSL certificate for their domain. | ||
+ | |||
=== Authorization code === | === Authorization code === | ||
− | There are special requirements regarding the format of the authorization code. Please consider the following restrictions, if you want to assign a new authorization code to a . | + | There are special requirements regarding the format of the authorization code. Please consider the following restrictions, if you want to assign a new authorization code to a .APP domain: |
*Minimum 8 characters | *Minimum 8 characters |
Latest revision as of 10:56, 5 December 2022
.APP | |||
Overview | |||
Introduced | 2018 | ||
---|---|---|---|
Category | Technology, Entertainment | ||
Registry | Charleston Road Registry | ||
IDN Capable | Yes | ||
Dispute Policy | ICANN Rules | ||
Webpage | Register .APP | ||
Legal Information | |||
Legal | Registry Policies |
Contents |
[edit] Registry
TLD |
.app |
Registry | |
Dispute Policy | |
Registrar |
1api GmbH |
WHOIS-Server |
www.registry.google |
WHOIS-Update |
Real-Time |
Min. Characters |
1 |
Max. Characters |
63 |
Character Set |
|
Limitations |
|
IDN capable |
Yes |
Restore capable |
Real-Time |
Handle Updates |
Supported |
Registration System |
Real-Time |
Allowed number of NS |
0 to 10 |
Registry Nameservercheck |
No |
Host IP-Addresses Type |
IPv4 / IPv6 |
Hosts managed as |
Object |
SEC DNS Interface |
DS data interface |
Transferclass |
Pull |
Transfer Periods |
1Y |
Transfer Authcode required |
Yes |
Transfer Real-Time |
No |
Transfer Pending Period |
5 days |
Transfer Expire Action |
ACK |
Transfer ACK by |
Registrar |
Transfer NACK by |
Registrar |
Transfer Lock |
Yes |
Owner Change by |
ICANN-TRADE |
[edit] Periods
Registration Periods |
1-10 years |
Add Grace Period |
0 days |
Accounting Period |
0 days |
Finalization Period |
35 days |
Failure Period |
44 days |
Payment Period |
-61 days |
Deletion Restorable Period |
30 days |
Deletion Hold Period |
5 days |
Explicit Renewals |
Yes |
Renewal Periods |
1-9 years |
[edit] API
[edit] Domain Registration
Domains can be registered in Real-Time with the API AddDomain command.
command = AddDomain domain = (DOMAIN)
REQUIRED
ownercontact0 = (CONTACT) admincontact0 = (CONTACT) techcontact0 = (CONTACT) billingcontact0 = (CONTACT) nameserver0 = (NAMESERVER) nameserver1 = (NAMESERVER) X-ACCEPT-SSL-REQUIREMENT=1
OPTIONAL
auth = (TEXT) | (NULL) period = (PERIOD) transferlock = 0 | 1 | (NULL)
[edit] Domain Transfer
The transfer has to be initiated by the gaining registrar and can be requested with the API TransferDomain command.
A valid Authorization Code must be provided to initiate a transfer successfully. You may obtain the authorization code from the losing registrar.
As soon as a domain transfer has been initiated it can either be approved ("ACK") by Registrar or denied ("NACK") by Registrar. If the registry receives neither a denial ("NACK") nor an approval ("ACK") the transfer will be ACKed after 5 days.
Please note that HEXONET is acting in compliance with ICANN Transfer Guidelines. The respective policies can be viewed under http://www.icann.org/transfers/ :
As soon as you have submitted a transfer request, the HEXONET system start the transfer through the official registry and the losing registrar will receive the transfer request. The losing registrar will then send an email to the domain registrant/administrative contact, allowing them to deny the pending transfer. If there is no response received within 5 days, the transfer will automatically be processed.
command = TransferDomain domain = (DOMAIN)
REQUIRED
auth = (TEXT)
OPTIONAL
period = (PERIOD) transferlock = 0 | 1 | (NULL) action = REQUEST | APPROVE | DENY | CANCEL | USERTRANSFER
[edit] Delete Domain
Domains can be deleted with the API DeleteDomain command.
There is a Deletion Restorable Period of 30 days and a following Deletion Hold Period of 5 days.
command = DeleteDomain domain = (DOMAIN)
[edit] Restore Domain
Restores can be processed in realtime. A restore is possible within 30 days upon deletion. Please use the command RestoreDomain.
command = RestoreDomain domain = (DOMAIN)
OPTIONAL
subuser = (TEXT) renewalmode = (NULL) | (TEXT)
[edit] Ownerchange
All contact information with the exception of registrant Name, Firstname and Organisation can be updated through the ModifyDomain command.
In order to change the owner you have to request a trade with the TradeDomain command. This can be done through our web interface or through our API:
command = TradeDomain domain = <DOMAIN> ownercontact0 = <CONTACT>
command = ModifyDomain domain = (DOMAIN)
REQUIRED
ownercontact0 = (CONTACT)
[edit] TLD specific
[edit] .APP Security Requirement Additional Information
Google Registry has added .app to the HSTS preload list, which means that all websites using this TLD will be encrypted by default and will not allow insecure connections. Registrants must configure HTTPS serving for their domains in order for them to work in all major browsers. That is, they need to configure an SSL certificate in order for their .app domain to function in browsers.
Important: Please note that upon registration, registrants of .app must be aware of the security requirement outlined above, including that:
- .app is a secure namespace, and
- HTTPS is required for all .app websites, as they will be encrypted by default and will not allow insecure connections
Additionally, registrants must be provided with resources about configuring HTTPS and obtaining an SSL certificate for their domain.
[edit] Authorization code
There are special requirements regarding the format of the authorization code. Please consider the following restrictions, if you want to assign a new authorization code to a .APP domain:
- Minimum 8 characters
- having at least one (1) numeric,
- one (1) alphabetic, and
- one (1) special character
You may generate a valid random auth code by adding this parameter to the ModifyDomain command:
command = ModifyDomain domain = (DOMAIN)
REQUIRED
generaterandomauth = 1
[edit] Addons
The following overview shows you all available Domain Addons which can be used for this special kind of TLD. It also shows the respective API parameters which are required to activate the Domain Addons:
Addon Class | Parameter to (de)activate *1) | Renewal term *2) | Affected Parameters *3) |
Proxy (WHOISTRUSTEE_CRR) | X-ACCEPT-WHOISTRUSTEE-TAC = 0 | 1 | 1 month | All Contacts |
X-ACCEPT-WHOISTRUSTEE-TAC=0