Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ti-guru@localhost:~$ sudo cat /var/snap/nextcloud/current/certs/certbot/logs/letsencrypt.log
- 2017-09-07 20:00:37,383:DEBUG:certbot.main:certbot version: 0.14.1
- 2017-09-07 20:00:37,389:DEBUG:certbot.main:Arguments: ['--text', '--config-dir', '/var/snap/nextcloud/current/certs/certbot/config', '--work-dir', '/var/snap/nextcloud/current/certs/certbot/work', '--logs-dir', '/var/snap/nextcloud/current/certs/certbot/logs', '--authenticator', 'nextcloud:webroot', '--nextcloud:webroot-path', '/var/snap/nextcloud/current/certs/certbot', '--rsa-key-size', '4096', '--email', 'MY.EMAIL@gmail.com', '--non-interactive', '--agree-tos', '--force-renewal', '-d', 'cloud.MYDOMAIN.COM']
- 2017-09-07 20:00:37,389:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#nextcloud:webroot,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
- 2017-09-07 20:00:37,760:DEBUG:certbot.plugins.selection:Requested authenticator nextcloud:webroot and installer <certbot.cli._Default object at 0x75ee4610>
- 2017-09-07 20:00:37,761:DEBUG:certbot.cli:Default Detector is Namespace(account=<certbot.cli._Default object at 0x75ed9c70>, agree_dev_preview=None, allow_subset_of_names=<certbot.cli._Default object at 0x75ed9b70>, apache=<certbot.cli._Default object at 0x75ee4330>, authenticator='nextcloud:webroot', break_my_certs=<certbot.cli._Default object at 0x75ee42f0>, cert_path=<certbot.cli._Default object at 0x75ee91b0>, certname=<certbot.cli._Default object at 0x75ed9550>, chain_path=<certbot.cli._Default object at 0x75ee4cf0>, checkpoints=<certbot.cli._Default object at 0x75ee4eb0>, config_dir='/var/snap/nextcloud/current/certs/certbot/config', config_file=None, configurator=<certbot.cli._Default object at 0x75ee4610>, csr=<certbot.cli._Default object at 0x75ee4dd0>, debug=<certbot.cli._Default object at 0x75ee4030>, debug_challenges=<certbot.cli._Default object at 0x75ee40d0>, dialog=None, domains='cloud.MYYDOMAIN.COM', dry_run=<certbot.cli._Default object at 0x75ed95d0>, duplicate=<certbot.cli._Default object at 0x75ed9d30>, eff_email=<certbot.cli._Default object at 0x75ed97f0>, email='MY.EMAIL@gmail.com', expand=<certbot.cli._Default object at 0x75ed9950>, force_interactive=<certbot.cli._Default object at 0x75ed9430>, fullchain_path=<certbot.cli._Default object at 0x75ee4e10>, func=<function certonly at 0x75d28130>, hsts=<certbot.cli._Default object at 0x75ee4550>, http01_port=<certbot.cli._Default object at 0x75ee4270>, ifaces=<certbot.cli._Default object at 0x75ee90b0>, init=<certbot.cli._Default object at 0x75ee4f50>, installer=<certbot.cli._Default object at 0x75ee4610>, key_path=<certbot.cli._Default object at 0x75ee4f10>, logs_dir='/var/snap/nextcloud/current/certs/certbot/logs', manual=<certbot.cli._Default object at 0x75ed9f50>, manual_auth_hook=<certbot.cli._Default object at 0x75ed9c50>, manual_cleanup_hook=<certbot.cli._Default object at 0x75ed9ab0>, manual_public_ip_logging_ok=<certbot.cli._Default object at 0x75ed99b0>, must_staple=<certbot.cli._Default object at 0x75ee43d0>, nextcloud:webroot_map=<certbot.cli._Default object at 0x75ed9790>, nextcloud:webroot_path='/var/snap/nextcloud/current/certs/certbot', nginx=<certbot.cli._Default object at 0x75ee4230>, no_bootstrap=<certbot.cli._Default object at 0x75ed9e90>, no_self_upgrade=<certbot.cli._Default object at 0x75ed9e10>, no_verify_ssl=<certbot.cli._Default object at 0x75ee4150>, noninteractive_mode=True, num=<certbot.cli._Default object at 0x75ee4c90>, os_packages_only=<certbot.cli._Default object at 0x75ed9d90>, post_hook=<certbot.cli._Default object at 0x75ee4a10>, pre_hook=<certbot.cli._Default object at 0x75ee4970>, pref_challs=<certbot.cli._Default object at 0x75ee48d0>, prepare=<certbot.cli._Default object at 0x75ee4ff0>, quiet=<certbot.cli._Default object at 0x75ed9f10>, reason=<certbot.cli._Default object at 0x75ee4e50>, redirect=<certbot.cli._Default object at 0x75ee4450>, register_unsafely_without_email=<certbot.cli._Default object at 0x75ed9630>, reinstall=<certbot.cli._Default object at 0x75ed98d0>, renew_by_default=True, renew_hook=<certbot.cli._Default object at 0x75ee4ab0>, renew_with_new_domains=<certbot.cli._Default object at 0x75ed9af0>, rsa_key_size='4096', server=<certbot.cli._Default object at 0x75ee47b0>, staging=<certbot.cli._Default object at 0x75ed9f90>, standalone=<certbot.cli._Default object at 0x75ee4090>, standalone_supported_challenges=<certbot.cli._Default object at 0x75ed9670>, staple=<certbot.cli._Default object at 0x75ee4750>, strict_permissions=<certbot.cli._Default object at 0x75ee4850>, text_mode=True, tls_sni_01_port=<certbot.cli._Default object at 0x75ee41d0>, tos=True, uir=<certbot.cli._Default object at 0x75ee4650>, update_registration=<certbot.cli._Default object at 0x75ed96b0>, user_agent=<certbot.cli._Default object at 0x75ee4d30>, validate_hooks=<certbot.cli._Default object at 0x75ee4b50>, verb='certonly', verbose_count=<certbot.cli._Default object at 0x75ed92d0>, webroot=<certbot.cli._Default object at 0x75ed9e70>, webroot_map=<certbot.cli._Default object at 0x75ed9470>, webroot_path=<certbot.cli._Default object at 0x75ed9570>, work_dir='/var/snap/nextcloud/current/certs/certbot/work')
- 2017-09-07 20:00:37,864:DEBUG:certbot.log:Root logging level set at 20
- 2017-09-07 20:00:37,870:INFO:certbot.log:Saving debug log to /var/snap/nextcloud/current/certs/certbot/logs/letsencrypt.log
- 2017-09-07 20:00:37,875:DEBUG:certbot.plugins.selection:Requested authenticator nextcloud:webroot and installer None
- 2017-09-07 20:00:37,930:DEBUG:certbot.plugins.selection:Single candidate plugin: * nextcloud:webroot
- Description: Place files in webroot directory without running chown
- Interfaces: IAuthenticator, IPlugin
- Entry point: webroot = certbot_nextcloud_plugin.webroot:Authenticator
- Initialized: <certbot_nextcloud_plugin.webroot.Authenticator object at 0x763514f0>
- Prep: True
- 2017-09-07 20:00:37,937:DEBUG:certbot.plugins.selection:Selected authenticator <certbot_nextcloud_plugin.webroot.Authenticator object at 0x763514f0> and installer None
- 2017-09-07 20:00:48,103:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/directory.
- 2017-09-07 20:00:48,180:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
- 2017-09-07 20:00:48,889:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 561
- 2017-09-07 20:00:48,895:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Content-Type: application/json
- Content-Length: 561
- Boulder-Request-Id: ... long key ...
- Replay-Nonce: ... long key ...
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- Expires: Thu, 07 Sep 2017 20:00:48 GMT
- Cache-Control: max-age=0, no-cache, no-store
- Pragma: no-cache
- Date: Thu, 07 Sep 2017 20:00:48 GMT
- Connection: keep-alive
- {
- "-2hUxZyanW4": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
- "key-change": "https://acme-v01.api.letsencrypt.org/acme/key-change",
- "meta": {
- "terms-of-service": "https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf"
- },
- "new-authz": "https://acme-v01.api.letsencrypt.org/acme/new-authz",
- "new-cert": "https://acme-v01.api.letsencrypt.org/acme/new-cert",
- "new-reg": "https://acme-v01.api.letsencrypt.org/acme/new-reg",
- "revoke-cert": "https://acme-v01.api.letsencrypt.org/acme/revoke-cert"
- }
- 2017-09-07 20:00:48,897:DEBUG:acme.client:Requesting fresh nonce
- 2017-09-07 20:00:48,898:DEBUG:acme.client:Sending HEAD request to https://acme-v01.api.letsencrypt.org/acme/new-reg.
- 2017-09-07 20:00:49,110:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "HEAD /acme/new-reg HTTP/1.1" 405 0
- 2017-09-07 20:00:49,115:DEBUG:acme.client:Received response:
- HTTP 405
- Server: nginx
- Content-Type: application/problem+json
- Content-Length: 91
- Allow: POST
- Boulder-Request-Id: ... long key ...
- Replay-Nonce: ... long key ...
- Expires: Thu, 07 Sep 2017 20:00:49 GMT
- Cache-Control: max-age=0, no-cache, no-store
- Pragma: no-cache
- Date: Thu, 07 Sep 2017 20:00:49 GMT
- Connection: keep-alive
- 2017-09-07 20:00:49,116:DEBUG:acme.client:Storing nonce: ... long key ...
- 2017-09-07 20:00:49,118:DEBUG:acme.client:JWS payload:
- {
- "contact": [
- "mailto:MY.EMAIL@gmail.com"
- ],
- "resource": "new-reg"
- }
- 2017-09-07 20:00:49,428:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-reg:
- {
- "header": {
- "alg": "RS256",
- "jwk": {
- "e": "AQAB",
- "kty": "RSA",
- "n": ... long key ...
- }
- },
- "protected": ... long key ...,
- "payload": ... long key ...,
- "signature": ... long key ...
- }
- 2017-09-07 20:00:49,840:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-reg HTTP/1.1" 201 929
- 2017-09-07 20:00:49,845:DEBUG:acme.client:Received response:
- HTTP 201
- Server: nginx
- Content-Type: application/json
- Content-Length: 929
- Boulder-Request-Id: ... long key ...
- Boulder-Requester: 20977964
- Link: <https://acme-v01.api.letsencrypt.org/acme/new-authz>;rel="next", <https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf>;rel="terms-of-service"
- Location: https://acme-v01.api.letsencrypt.org/acme/reg/20977964
- Replay-Nonce: ... long key ...
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- Expires: Thu, 07 Sep 2017 20:00:49 GMT
- Cache-Control: max-age=0, no-cache, no-store
- Pragma: no-cache
- Date: Thu, 07 Sep 2017 20:00:49 GMT
- Connection: keep-alive
- {
- "id": 20977964,
- "key": {
- "kty": "RSA",
- "n": ... long key ...,
- "e": "AQAB"
- },
- "contact": [
- "mailto:MY.EMAIL@gmail.com"
- ],
- "initialIp": "XX.XXX.XXX.XX",
- "createdAt": "2017-09-07T20:00:49.716260812Z",
- "Status": "valid"
- }
- 2017-09-07 20:00:49,846:DEBUG:acme.client:Storing nonce: ... long key ...
- 2017-09-07 20:00:49,853:DEBUG:acme.client:JWS payload:
- {
- "contact": [
- "mailto:MY.EMAIL@gmail.com"
- ],
- "resource": "reg",
- "agreement": "https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf",
- "key": {
- "e": "AQAB",
- "kty": "RSA",
- "n": ... long key ...
- }
- }
- 2017-09-07 20:00:50,135:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/reg/20977964:
- {
- "header": {
- "alg": "RS256",
- "jwk": {
- "e": "AQAB",
- "kty": "RSA",
- "n": ... long key ...
- }
- },
- "protected": ... long key ...,
- "payload": ... long key ...,
- "signature": ... long key ...
- }
- 2017-09-07 20:00:50,368:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/reg/20977964 HTTP/1.1" 202 1002
- 2017-09-07 20:00:50,374:DEBUG:acme.client:Received response:
- HTTP 202
- Server: nginx
- Content-Type: application/json
- Content-Length: 1002
- Boulder-Request-Id: ... long key ...
- Boulder-Requester: 20977964
- Link: <https://acme-v01.api.letsencrypt.org/acme/new-authz>;rel="next", <https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf>;rel="terms-of-service"
- Replay-Nonce: ... long key ...
- Expires: Thu, 07 Sep 2017 20:00:50 GMT
- Cache-Control: max-age=0, no-cache, no-store
- Pragma: no-cache
- Date: Thu, 07 Sep 2017 20:00:50 GMT
- Connection: keep-alive
- {
- "id": 20977964,
- "key": {
- "kty": "RSA",
- "n": ... long key ...,
- "e": "AQAB"
- },
- "contact": [
- "mailto:MY.EMAIL@gmail.com"
- ],
- "agreement": "https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf",
- "initialIp": "XX.XXX.XXX.XX",
- "createdAt": "2017-09-07T20:00:49Z",
- "Status": "valid"
- }
- 2017-09-07 20:00:50,375:DEBUG:acme.client:Storing nonce: ... long key ...
- 2017-09-07 20:00:50,407:DEBUG:certbot.reporter:Reporting to user: Your account credentials have been saved in your Certbot configuration directory at /var/snap/nextcloud/current/certs/certbot/config. You should make a secure backup of this folder now. This configuration directory will also contain certificates and private keys obtained by Certbot so making regular backups of this folder is ideal.
- 2017-09-07 20:00:50,443:DEBUG:certbot.main:Picked account: <Account(RegistrationResource(body=Registration(status=None, contact=(u'mailto:MY.EMAIL@gmail.com',), agreement=u'https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf', key=JWKRSA(key=<ComparableRSAKey(<cryptography.hazmat.backends.openssl.rsa._RSAPublicKey object at 0x75eb4c10>)>)), uri='https://acme-v01.api.letsencrypt.org/acme/reg/20977964', new_authzr_uri=None, terms_of_service='https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf'), ... long key ..., Meta(creation_host='localhost.localdomain', creation_dt=datetime.datetime(2017, 9, 7, 20, 0, 50, tzinfo=<UTC>)))>
- 2017-09-07 20:00:50,454:INFO:certbot.main:Obtaining a new certificate
- 2017-09-07 20:00:50,456:DEBUG:acme.client:JWS payload:
- {
- "identifier": {
- "type": "dns",
- "value": "cloud.MYDOMAIN.COM"
- },
- "resource": "new-authz"
- }
- 2017-09-07 20:00:50,738:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
- {
- "header": {
- "alg": "RS256",
- "jwk": {
- "e": "AQAB",
- "kty": "RSA",
- "n": ... long key ...
- }
- },
- "protected": ... long key ...,
- "payload": ... long key ...,
- "signature": ... long key ...
- }
- 2017-09-07 20:00:50,979:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 1008
- 2017-09-07 20:00:50,984:DEBUG:acme.client:Received response:
- HTTP 201
- Server: nginx
- Content-Type: application/json
- Content-Length: 1008
- Boulder-Request-Id: ... long key ...
- Boulder-Requester: 20977964
- Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
- Location: https://acme-v01.api.letsencrypt.org/acme/authz/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI
- Replay-Nonce: ... long key ...
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- Expires: Thu, 07 Sep 2017 20:00:50 GMT
- Cache-Control: max-age=0, no-cache, no-store
- Pragma: no-cache
- Date: Thu, 07 Sep 2017 20:00:50 GMT
- Connection: keep-alive
- {
- "identifier": {
- "type": "dns",
- "value": "cloud.MYDOMAIN.COM"
- },
- "status": "pending",
- "expires": "2017-09-14T20:00:50.858273549Z",
- "challenges": [
- {
- "type": "http-01",
- "status": "pending",
- "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125640",
- "token": ... long key ...
- },
- {
- "type": "tls-sni-01",
- "status": "pending",
- "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125641",
- "token": ... long key ..."
- },
- {
- "type": "dns-01",
- "status": "pending",
- "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125642",
- "token": ... long key ...
- }
- ],
- "combinations": [
- [
- 1
- ],
- [
- 2
- ],
- [
- 0
- ]
- ]
- }
- 2017-09-07 20:00:50,985:DEBUG:acme.client:Storing nonce: ... long key ...
- 2017-09-07 20:00:51,004:INFO:certbot.auth_handler:Performing the following challenges:
- 2017-09-07 20:00:51,005:INFO:certbot.auth_handler:http-01 challenge for cloud.MYDOMAIN.COM
- 2017-09-07 20:00:51,007:INFO:certbot_nextcloud_plugin.webroot:Using the webroot path /var/snap/nextcloud/current/certs/certbot for all domains.
- 2017-09-07 20:00:51,008:DEBUG:certbot_nextcloud_plugin.webroot:Creating root challenges validation dir at /var/snap/nextcloud/current/certs/certbot
- 2017-09-07 20:00:51,083:DEBUG:certbot_nextcloud_plugin.webroot:Attempting to save validation to /var/snap/nextcloud/current/certs/certbot/.well-known/acme-challenge/UcPEqyxMdhM2BTT93GvVWm4wTw2cqVEvLPCCfKBfE8A
- 2017-09-07 20:00:51,088:INFO:certbot.auth_handler:Waiting for verification...
- 2017-09-07 20:00:51,090:DEBUG:acme.client:JWS payload:
- {
- "keyAuthorization": ... long key ...,
- "type": "http-01",
- "resource": "challenge"
- }
- 2017-09-07 20:00:51,370:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125640:
- {
- "header": {
- "alg": "RS256",
- "jwk": {
- "e": "AQAB",
- "kty": "RSA",
- "n": ... long key ...
- }
- },
- "protected": ... long key ...,
- "payload": ... long key ...,
- "signature": ... long key ...
- }
- 2017-09-07 20:00:51,607:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125640 HTTP/1.1" 202 336
- 2017-09-07 20:00:51,612:DEBUG:acme.client:Received response:
- HTTP 202
- Server: nginx
- Content-Type: application/json
- Content-Length: 336
- Boulder-Request-Id: ... long key ...
- Boulder-Requester: 20977964
- Link: <https://acme-v01.api.letsencrypt.org/acme/authz/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI>;rel="up"
- Location: https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125640
- Replay-Nonce: ... long key ...
- Expires: Thu, 07 Sep 2017 20:00:51 GMT
- Cache-Control: max-age=0, no-cache, no-store
- Pragma: no-cache
- Date: Thu, 07 Sep 2017 20:00:51 GMT
- Connection: keep-alive
- {
- "type": "http-01",
- "status": "pending",
- "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125640",
- "token": ... long key ...,
- "keyAuthorization": ... long key ...
- }
- 2017-09-07 20:00:51,613:DEBUG:acme.client:Storing nonce: ... long key ...
- 2017-09-07 20:00:54,619:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI.
- 2017-09-07 20:00:54,835:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI HTTP/1.1" 200 1115
- 2017-09-07 20:00:54,841:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Content-Type: application/json
- Content-Length: 1115
- Boulder-Request-Id: ... long key ...
- Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
- Replay-Nonce: ... long key ...
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- Expires: Thu, 07 Sep 2017 20:00:54 GMT
- Cache-Control: max-age=0, no-cache, no-store
- Pragma: no-cache
- Date: Thu, 07 Sep 2017 20:00:54 GMT
- Connection: keep-alive
- {
- "identifier": {
- "type": "dns",
- "value": "cloud.MYDOMAIN.COM"
- },
- "status": "pending",
- "expires": "2017-09-14T20:00:50Z",
- "challenges": [
- {
- "type": "http-01",
- "status": "pending",
- "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125640",
- "token": ... long key ...,
- "keyAuthorization": ... long key ...
- },
- {
- "type": "tls-sni-01",
- "status": "pending",
- "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125641",
- "token": ... long key ...
- },
- {
- "type": "dns-01",
- "status": "pending",
- "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125642",
- "token": ... long key ...
- }
- ],
- "combinations": [
- [
- 1
- ],
- [
- 2
- ],
- [
- 0
- ]
- ]
- }
- 2017-09-07 20:00:57,849:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI.
- 2017-09-07 20:00:58,067:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI HTTP/1.1" 200 1739
- 2017-09-07 20:00:58,072:DEBUG:acme.client:Received response:
- HTTP 200
- Server: nginx
- Content-Type: application/json
- Content-Length: 1739
- Boulder-Request-Id: Jjj7XANeMmQ-s-MJ_Ux7WQMfUE3e-VrtEdj3yVc5Dqk
- Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
- Replay-Nonce: ... long key ...
- X-Frame-Options: DENY
- Strict-Transport-Security: max-age=604800
- Expires: Thu, 07 Sep 2017 20:00:58 GMT
- Cache-Control: max-age=0, no-cache, no-store
- Pragma: no-cache
- Date: Thu, 07 Sep 2017 20:00:58 GMT
- Connection: keep-alive
- {
- "identifier": {
- "type": "dns",
- "value": "cloud.MYDOMAIN.COM"
- },
- "status": "invalid",
- "expires": "2017-09-14T20:00:50Z",
- "challenges": [
- {
- "type": "http-01",
- "status": "invalid",
- "error": {
- "type": "urn:acme:error:connection",
- "detail": "Fetching http://cloud.MYDOMAIN.COM/.well-known/acme-challenge/UcPEqyxMdhM2BTT93GvVWm4wTw2cqVEvLPCCfKBfE8A: Timeout",
- "status": 400
- },
- "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125640",
- "token": ... long key ...,
- "keyAuthorization": ... long key ...,
- "validationRecord": [
- {
- "url": "http://cloud.MYDOMAIN.COM/.well-known/acme-challenge/UcPEqyxMdhM2BTT93GvVWm4wTw2cqVEvLPCCfKBfE8A",
- "hostname": "cloud.MYDOMAIN.COM",
- "port": "80",
- "addressesResolved": [
- "XX.XXX.XXX.XX"
- ],
- "addressUsed": "XX.XXX.XXX.XX",
- "addressesTried": []
- }
- ]
- },
- {
- "type": "tls-sni-01",
- "status": "pending",
- "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125641",
- "token": ... long key ...
- },
- {
- "type": "dns-01",
- "status": "pending",
- "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125642",
- "token": ... long key ...
- }
- ],
- "combinations": [
- [
- 1
- ],
- [
- 2
- ],
- [
- 0
- ]
- ]
- }
- 2017-09-07 20:00:58,079:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server:
- Domain: cloud.MYDOMAIN.COM
- Type: connection
- Detail: Fetching http://cloud.MYDOMAIN.COM/.well-known/acme-challenge/UcPEqyxMdhM2BTT93GvVWm4wTw2cqVEvLPCCfKBfE8A: Timeout
- To fix these errors, please make sure that your domain name was entered correctly and the DNS A record(s) for that domain contain(s) the right IP address. Additionally, please check that your computer has a publicly routable IP address and that no firewalls are preventing the server from communicating with the client. If you're using the webroot plugin, you should also verify that you are serving files from the webroot path you provided.
- 2017-09-07 20:00:58,081:INFO:certbot.auth_handler:Cleaning up challenges
- 2017-09-07 20:00:58,082:DEBUG:certbot_nextcloud_plugin.webroot:Removing /var/snap/nextcloud/current/certs/certbot/.well-known/acme-challenge/UcPEqyxMdhM2BTT93GvVWm4wTw2cqVEvLPCCfKBfE8A
- 2017-09-07 20:00:58,084:DEBUG:certbot_nextcloud_plugin.webroot:All challenges cleaned up, removing /var/snap/nextcloud/current/certs/certbot/.well-known/acme-challenge
- 2017-09-07 20:00:58,085:DEBUG:certbot.log:Exiting abnormally:
- Traceback (most recent call last):
- File "/snap/nextcloud/2713/bin/certbot", line 11, in <module>
- sys.exit(main())
- File "/snap/nextcloud/2713/lib/python2.7/site-packages/certbot/main.py", line 742, in main
- return config.func(config, plugins)
- File "/snap/nextcloud/2713/lib/python2.7/site-packages/certbot/main.py", line 682, in certonly
- lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
- File "/snap/nextcloud/2713/lib/python2.7/site-packages/certbot/main.py", line 82, in _get_and_save_cert
- lineage = le_client.obtain_and_enroll_certificate(domains, certname)
- File "/snap/nextcloud/2713/lib/python2.7/site-packages/certbot/client.py", line 344, in obtain_and_enroll_certificate
- certr, chain, key, _ = self.obtain_certificate(domains)
- File "/snap/nextcloud/2713/lib/python2.7/site-packages/certbot/client.py", line 313, in obtain_certificate
- self.config.allow_subset_of_names)
- File "/snap/nextcloud/2713/lib/python2.7/site-packages/certbot/auth_handler.py", line 81, in get_authorizations
- self._respond(resp, best_effort)
- File "/snap/nextcloud/2713/lib/python2.7/site-packages/certbot/auth_handler.py", line 138, in _respond
- self._poll_challenges(chall_update, best_effort)
- File "/snap/nextcloud/2713/lib/python2.7/site-packages/certbot/auth_handler.py", line 202, in _poll_challenges
- raise errors.FailedChallenges(all_failed_achalls)
- FailedChallenges: Failed authorization procedure. cloud.MYDOMAIN.COM (http-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Fetching http://cloud.MYDOMAIN.COM/.well-known/acme-challenge/UcPEqyxMdhM2BTT93GvVWm4wTw2cqVEvLPCCfKBfE8A: Timeout
Add Comment
Please, Sign In to add comment