API tools faq
paste
Guest User

Untitled

a guest
Sep 7th, 2017
120
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 24.40 KB | None | 0 0
raw download clone embed print report
  1. ti-guru@localhost:~$ sudo cat /var/snap/nextcloud/current/certs/certbot/logs/letsencrypt.log
  2. 2017-09-07 20:00:37,383:DEBUG:certbot.main:certbot version: 0.14.1
  3. 2017-09-07 20:00:37,389:DEBUG:certbot.main:Arguments: ['--text', '--config-dir', '/var/snap/nextcloud/current/certs/certbot/config', '--work-dir', '/var/snap/nextcloud/current/certs/certbot/work', '--logs-dir', '/var/snap/nextcloud/current/certs/certbot/logs', '--authenticator', 'nextcloud:webroot', '--nextcloud:webroot-path', '/var/snap/nextcloud/current/certs/certbot', '--rsa-key-size', '4096', '--email', 'MY.EMAIL@gmail.com', '--non-interactive', '--agree-tos', '--force-renewal', '-d', 'cloud.MYDOMAIN.COM']
  4. 2017-09-07 20:00:37,389:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#nextcloud:webroot,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
  5. 2017-09-07 20:00:37,760:DEBUG:certbot.plugins.selection:Requested authenticator nextcloud:webroot and installer <certbot.cli._Default object at 0x75ee4610>
  6. 2017-09-07 20:00:37,761:DEBUG:certbot.cli:Default Detector is Namespace(account=<certbot.cli._Default object at 0x75ed9c70>, agree_dev_preview=None, allow_subset_of_names=<certbot.cli._Default object at 0x75ed9b70>, apache=<certbot.cli._Default object at 0x75ee4330>, authenticator='nextcloud:webroot', break_my_certs=<certbot.cli._Default object at 0x75ee42f0>, cert_path=<certbot.cli._Default object at 0x75ee91b0>, certname=<certbot.cli._Default object at 0x75ed9550>, chain_path=<certbot.cli._Default object at 0x75ee4cf0>, checkpoints=<certbot.cli._Default object at 0x75ee4eb0>, config_dir='/var/snap/nextcloud/current/certs/certbot/config', config_file=None, configurator=<certbot.cli._Default object at 0x75ee4610>, csr=<certbot.cli._Default object at 0x75ee4dd0>, debug=<certbot.cli._Default object at 0x75ee4030>, debug_challenges=<certbot.cli._Default object at 0x75ee40d0>, dialog=None, domains='cloud.MYYDOMAIN.COM', dry_run=<certbot.cli._Default object at 0x75ed95d0>, duplicate=<certbot.cli._Default object at 0x75ed9d30>, eff_email=<certbot.cli._Default object at 0x75ed97f0>, email='MY.EMAIL@gmail.com', expand=<certbot.cli._Default object at 0x75ed9950>, force_interactive=<certbot.cli._Default object at 0x75ed9430>, fullchain_path=<certbot.cli._Default object at 0x75ee4e10>, func=<function certonly at 0x75d28130>, hsts=<certbot.cli._Default object at 0x75ee4550>, http01_port=<certbot.cli._Default object at 0x75ee4270>, ifaces=<certbot.cli._Default object at 0x75ee90b0>, init=<certbot.cli._Default object at 0x75ee4f50>, installer=<certbot.cli._Default object at 0x75ee4610>, key_path=<certbot.cli._Default object at 0x75ee4f10>, logs_dir='/var/snap/nextcloud/current/certs/certbot/logs', manual=<certbot.cli._Default object at 0x75ed9f50>, manual_auth_hook=<certbot.cli._Default object at 0x75ed9c50>, manual_cleanup_hook=<certbot.cli._Default object at 0x75ed9ab0>, manual_public_ip_logging_ok=<certbot.cli._Default object at 0x75ed99b0>, must_staple=<certbot.cli._Default object at 0x75ee43d0>, nextcloud:webroot_map=<certbot.cli._Default object at 0x75ed9790>, nextcloud:webroot_path='/var/snap/nextcloud/current/certs/certbot', nginx=<certbot.cli._Default object at 0x75ee4230>, no_bootstrap=<certbot.cli._Default object at 0x75ed9e90>, no_self_upgrade=<certbot.cli._Default object at 0x75ed9e10>, no_verify_ssl=<certbot.cli._Default object at 0x75ee4150>, noninteractive_mode=True, num=<certbot.cli._Default object at 0x75ee4c90>, os_packages_only=<certbot.cli._Default object at 0x75ed9d90>, post_hook=<certbot.cli._Default object at 0x75ee4a10>, pre_hook=<certbot.cli._Default object at 0x75ee4970>, pref_challs=<certbot.cli._Default object at 0x75ee48d0>, prepare=<certbot.cli._Default object at 0x75ee4ff0>, quiet=<certbot.cli._Default object at 0x75ed9f10>, reason=<certbot.cli._Default object at 0x75ee4e50>, redirect=<certbot.cli._Default object at 0x75ee4450>, register_unsafely_without_email=<certbot.cli._Default object at 0x75ed9630>, reinstall=<certbot.cli._Default object at 0x75ed98d0>, renew_by_default=True, renew_hook=<certbot.cli._Default object at 0x75ee4ab0>, renew_with_new_domains=<certbot.cli._Default object at 0x75ed9af0>, rsa_key_size='4096', server=<certbot.cli._Default object at 0x75ee47b0>, staging=<certbot.cli._Default object at 0x75ed9f90>, standalone=<certbot.cli._Default object at 0x75ee4090>, standalone_supported_challenges=<certbot.cli._Default object at 0x75ed9670>, staple=<certbot.cli._Default object at 0x75ee4750>, strict_permissions=<certbot.cli._Default object at 0x75ee4850>, text_mode=True, tls_sni_01_port=<certbot.cli._Default object at 0x75ee41d0>, tos=True, uir=<certbot.cli._Default object at 0x75ee4650>, update_registration=<certbot.cli._Default object at 0x75ed96b0>, user_agent=<certbot.cli._Default object at 0x75ee4d30>, validate_hooks=<certbot.cli._Default object at 0x75ee4b50>, verb='certonly', verbose_count=<certbot.cli._Default object at 0x75ed92d0>, webroot=<certbot.cli._Default object at 0x75ed9e70>, webroot_map=<certbot.cli._Default object at 0x75ed9470>, webroot_path=<certbot.cli._Default object at 0x75ed9570>, work_dir='/var/snap/nextcloud/current/certs/certbot/work')
  7. 2017-09-07 20:00:37,864:DEBUG:certbot.log:Root logging level set at 20
  8. 2017-09-07 20:00:37,870:INFO:certbot.log:Saving debug log to /var/snap/nextcloud/current/certs/certbot/logs/letsencrypt.log
  9. 2017-09-07 20:00:37,875:DEBUG:certbot.plugins.selection:Requested authenticator nextcloud:webroot and installer None
  10. 2017-09-07 20:00:37,930:DEBUG:certbot.plugins.selection:Single candidate plugin: * nextcloud:webroot
  11. Description: Place files in webroot directory without running chown
  12. Interfaces: IAuthenticator, IPlugin
  13. Entry point: webroot = certbot_nextcloud_plugin.webroot:Authenticator
  14. Initialized: <certbot_nextcloud_plugin.webroot.Authenticator object at 0x763514f0>
  15. Prep: True
  16. 2017-09-07 20:00:37,937:DEBUG:certbot.plugins.selection:Selected authenticator <certbot_nextcloud_plugin.webroot.Authenticator object at 0x763514f0> and installer None
  17. 2017-09-07 20:00:48,103:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/directory.
  18. 2017-09-07 20:00:48,180:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
  19. 2017-09-07 20:00:48,889:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 561
  20. 2017-09-07 20:00:48,895:DEBUG:acme.client:Received response:
  21. HTTP 200
  22. Server: nginx
  23. Content-Type: application/json
  24. Content-Length: 561
  25. Boulder-Request-Id: ... long key ...
  26. Replay-Nonce: ... long key ...
  27. X-Frame-Options: DENY
  28. Strict-Transport-Security: max-age=604800
  29. Expires: Thu, 07 Sep 2017 20:00:48 GMT
  30. Cache-Control: max-age=0, no-cache, no-store
  31. Pragma: no-cache
  32. Date: Thu, 07 Sep 2017 20:00:48 GMT
  33. Connection: keep-alive
  34.  
  35. {
  36. "-2hUxZyanW4": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
  37. "key-change": "https://acme-v01.api.letsencrypt.org/acme/key-change",
  38. "meta": {
  39. "terms-of-service": "https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf"
  40. },
  41. "new-authz": "https://acme-v01.api.letsencrypt.org/acme/new-authz",
  42. "new-cert": "https://acme-v01.api.letsencrypt.org/acme/new-cert",
  43. "new-reg": "https://acme-v01.api.letsencrypt.org/acme/new-reg",
  44. "revoke-cert": "https://acme-v01.api.letsencrypt.org/acme/revoke-cert"
  45. }
  46. 2017-09-07 20:00:48,897:DEBUG:acme.client:Requesting fresh nonce
  47. 2017-09-07 20:00:48,898:DEBUG:acme.client:Sending HEAD request to https://acme-v01.api.letsencrypt.org/acme/new-reg.
  48. 2017-09-07 20:00:49,110:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "HEAD /acme/new-reg HTTP/1.1" 405 0
  49. 2017-09-07 20:00:49,115:DEBUG:acme.client:Received response:
  50. HTTP 405
  51. Server: nginx
  52. Content-Type: application/problem+json
  53. Content-Length: 91
  54. Allow: POST
  55. Boulder-Request-Id: ... long key ...
  56. Replay-Nonce: ... long key ...
  57. Expires: Thu, 07 Sep 2017 20:00:49 GMT
  58. Cache-Control: max-age=0, no-cache, no-store
  59. Pragma: no-cache
  60. Date: Thu, 07 Sep 2017 20:00:49 GMT
  61. Connection: keep-alive
  62.  
  63.  
  64. 2017-09-07 20:00:49,116:DEBUG:acme.client:Storing nonce: ... long key ...
  65. 2017-09-07 20:00:49,118:DEBUG:acme.client:JWS payload:
  66. {
  67. "contact": [
  68. "mailto:MY.EMAIL@gmail.com"
  69. ],
  70. "resource": "new-reg"
  71. }
  72. 2017-09-07 20:00:49,428:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-reg:
  73. {
  74. "header": {
  75. "alg": "RS256",
  76. "jwk": {
  77. "e": "AQAB",
  78. "kty": "RSA",
  79. "n": ... long key ...
  80. }
  81. },
  82. "protected": ... long key ...,
  83. "payload": ... long key ...,
  84. "signature": ... long key ...
  85. }
  86. 2017-09-07 20:00:49,840:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-reg HTTP/1.1" 201 929
  87. 2017-09-07 20:00:49,845:DEBUG:acme.client:Received response:
  88. HTTP 201
  89. Server: nginx
  90. Content-Type: application/json
  91. Content-Length: 929
  92. Boulder-Request-Id: ... long key ...
  93. Boulder-Requester: 20977964
  94. Link: <https://acme-v01.api.letsencrypt.org/acme/new-authz>;rel="next", <https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf>;rel="terms-of-service"
  95. Location: https://acme-v01.api.letsencrypt.org/acme/reg/20977964
  96. Replay-Nonce: ... long key ...
  97. X-Frame-Options: DENY
  98. Strict-Transport-Security: max-age=604800
  99. Expires: Thu, 07 Sep 2017 20:00:49 GMT
  100. Cache-Control: max-age=0, no-cache, no-store
  101. Pragma: no-cache
  102. Date: Thu, 07 Sep 2017 20:00:49 GMT
  103. Connection: keep-alive
  104.  
  105. {
  106. "id": 20977964,
  107. "key": {
  108. "kty": "RSA",
  109. "n": ... long key ...,
  110. "e": "AQAB"
  111. },
  112. "contact": [
  113. "mailto:MY.EMAIL@gmail.com"
  114. ],
  115. "initialIp": "XX.XXX.XXX.XX",
  116. "createdAt": "2017-09-07T20:00:49.716260812Z",
  117. "Status": "valid"
  118. }
  119. 2017-09-07 20:00:49,846:DEBUG:acme.client:Storing nonce: ... long key ...
  120. 2017-09-07 20:00:49,853:DEBUG:acme.client:JWS payload:
  121. {
  122. "contact": [
  123. "mailto:MY.EMAIL@gmail.com"
  124. ],
  125. "resource": "reg",
  126. "agreement": "https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf",
  127. "key": {
  128. "e": "AQAB",
  129. "kty": "RSA",
  130. "n": ... long key ...
  131. }
  132. }
  133. 2017-09-07 20:00:50,135:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/reg/20977964:
  134. {
  135. "header": {
  136. "alg": "RS256",
  137. "jwk": {
  138. "e": "AQAB",
  139. "kty": "RSA",
  140. "n": ... long key ...
  141. }
  142. },
  143. "protected": ... long key ...,
  144. "payload": ... long key ...,
  145. "signature": ... long key ...
  146. }
  147. 2017-09-07 20:00:50,368:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/reg/20977964 HTTP/1.1" 202 1002
  148. 2017-09-07 20:00:50,374:DEBUG:acme.client:Received response:
  149. HTTP 202
  150. Server: nginx
  151. Content-Type: application/json
  152. Content-Length: 1002
  153. Boulder-Request-Id: ... long key ...
  154. Boulder-Requester: 20977964
  155. Link: <https://acme-v01.api.letsencrypt.org/acme/new-authz>;rel="next", <https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf>;rel="terms-of-service"
  156. Replay-Nonce: ... long key ...
  157. Expires: Thu, 07 Sep 2017 20:00:50 GMT
  158. Cache-Control: max-age=0, no-cache, no-store
  159. Pragma: no-cache
  160. Date: Thu, 07 Sep 2017 20:00:50 GMT
  161. Connection: keep-alive
  162.  
  163. {
  164. "id": 20977964,
  165. "key": {
  166. "kty": "RSA",
  167. "n": ... long key ...,
  168. "e": "AQAB"
  169. },
  170. "contact": [
  171. "mailto:MY.EMAIL@gmail.com"
  172. ],
  173. "agreement": "https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf",
  174. "initialIp": "XX.XXX.XXX.XX",
  175. "createdAt": "2017-09-07T20:00:49Z",
  176. "Status": "valid"
  177. }
  178. 2017-09-07 20:00:50,375:DEBUG:acme.client:Storing nonce: ... long key ...
  179. 2017-09-07 20:00:50,407:DEBUG:certbot.reporter:Reporting to user: Your account credentials have been saved in your Certbot configuration directory at /var/snap/nextcloud/current/certs/certbot/config. You should make a secure backup of this folder now. This configuration directory will also contain certificates and private keys obtained by Certbot so making regular backups of this folder is ideal.
  180. 2017-09-07 20:00:50,443:DEBUG:certbot.main:Picked account: <Account(RegistrationResource(body=Registration(status=None, contact=(u'mailto:MY.EMAIL@gmail.com',), agreement=u'https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf', key=JWKRSA(key=<ComparableRSAKey(<cryptography.hazmat.backends.openssl.rsa._RSAPublicKey object at 0x75eb4c10>)>)), uri='https://acme-v01.api.letsencrypt.org/acme/reg/20977964', new_authzr_uri=None, terms_of_service='https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf'), ... long key ..., Meta(creation_host='localhost.localdomain', creation_dt=datetime.datetime(2017, 9, 7, 20, 0, 50, tzinfo=<UTC>)))>
  181. 2017-09-07 20:00:50,454:INFO:certbot.main:Obtaining a new certificate
  182. 2017-09-07 20:00:50,456:DEBUG:acme.client:JWS payload:
  183. {
  184. "identifier": {
  185. "type": "dns",
  186. "value": "cloud.MYDOMAIN.COM"
  187. },
  188. "resource": "new-authz"
  189. }
  190. 2017-09-07 20:00:50,738:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/new-authz:
  191. {
  192. "header": {
  193. "alg": "RS256",
  194. "jwk": {
  195. "e": "AQAB",
  196. "kty": "RSA",
  197. "n": ... long key ...
  198. }
  199. },
  200. "protected": ... long key ...,
  201. "payload": ... long key ...,
  202. "signature": ... long key ...
  203. }
  204. 2017-09-07 20:00:50,979:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/new-authz HTTP/1.1" 201 1008
  205. 2017-09-07 20:00:50,984:DEBUG:acme.client:Received response:
  206. HTTP 201
  207. Server: nginx
  208. Content-Type: application/json
  209. Content-Length: 1008
  210. Boulder-Request-Id: ... long key ...
  211. Boulder-Requester: 20977964
  212. Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
  213. Location: https://acme-v01.api.letsencrypt.org/acme/authz/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI
  214. Replay-Nonce: ... long key ...
  215. X-Frame-Options: DENY
  216. Strict-Transport-Security: max-age=604800
  217. Expires: Thu, 07 Sep 2017 20:00:50 GMT
  218. Cache-Control: max-age=0, no-cache, no-store
  219. Pragma: no-cache
  220. Date: Thu, 07 Sep 2017 20:00:50 GMT
  221. Connection: keep-alive
  222.  
  223. {
  224. "identifier": {
  225. "type": "dns",
  226. "value": "cloud.MYDOMAIN.COM"
  227. },
  228. "status": "pending",
  229. "expires": "2017-09-14T20:00:50.858273549Z",
  230. "challenges": [
  231. {
  232. "type": "http-01",
  233. "status": "pending",
  234. "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125640",
  235. "token": ... long key ...
  236. },
  237. {
  238. "type": "tls-sni-01",
  239. "status": "pending",
  240. "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125641",
  241. "token": ... long key ..."
  242. },
  243. {
  244. "type": "dns-01",
  245. "status": "pending",
  246. "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125642",
  247. "token": ... long key ...
  248. }
  249. ],
  250. "combinations": [
  251. [
  252. 1
  253. ],
  254. [
  255. 2
  256. ],
  257. [
  258. 0
  259. ]
  260. ]
  261. }
  262. 2017-09-07 20:00:50,985:DEBUG:acme.client:Storing nonce: ... long key ...
  263. 2017-09-07 20:00:51,004:INFO:certbot.auth_handler:Performing the following challenges:
  264. 2017-09-07 20:00:51,005:INFO:certbot.auth_handler:http-01 challenge for cloud.MYDOMAIN.COM
  265. 2017-09-07 20:00:51,007:INFO:certbot_nextcloud_plugin.webroot:Using the webroot path /var/snap/nextcloud/current/certs/certbot for all domains.
  266. 2017-09-07 20:00:51,008:DEBUG:certbot_nextcloud_plugin.webroot:Creating root challenges validation dir at /var/snap/nextcloud/current/certs/certbot
  267. 2017-09-07 20:00:51,083:DEBUG:certbot_nextcloud_plugin.webroot:Attempting to save validation to /var/snap/nextcloud/current/certs/certbot/.well-known/acme-challenge/UcPEqyxMdhM2BTT93GvVWm4wTw2cqVEvLPCCfKBfE8A
  268. 2017-09-07 20:00:51,088:INFO:certbot.auth_handler:Waiting for verification...
  269. 2017-09-07 20:00:51,090:DEBUG:acme.client:JWS payload:
  270. {
  271. "keyAuthorization": ... long key ...,
  272. "type": "http-01",
  273. "resource": "challenge"
  274. }
  275. 2017-09-07 20:00:51,370:DEBUG:acme.client:Sending POST request to https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125640:
  276. {
  277. "header": {
  278. "alg": "RS256",
  279. "jwk": {
  280. "e": "AQAB",
  281. "kty": "RSA",
  282. "n": ... long key ...
  283. }
  284. },
  285. "protected": ... long key ...,
  286. "payload": ... long key ...,
  287. "signature": ... long key ...
  288. }
  289. 2017-09-07 20:00:51,607:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "POST /acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125640 HTTP/1.1" 202 336
  290. 2017-09-07 20:00:51,612:DEBUG:acme.client:Received response:
  291. HTTP 202
  292. Server: nginx
  293. Content-Type: application/json
  294. Content-Length: 336
  295. Boulder-Request-Id: ... long key ...
  296. Boulder-Requester: 20977964
  297. Link: <https://acme-v01.api.letsencrypt.org/acme/authz/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI>;rel="up"
  298. Location: https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125640
  299. Replay-Nonce: ... long key ...
  300. Expires: Thu, 07 Sep 2017 20:00:51 GMT
  301. Cache-Control: max-age=0, no-cache, no-store
  302. Pragma: no-cache
  303. Date: Thu, 07 Sep 2017 20:00:51 GMT
  304. Connection: keep-alive
  305.  
  306. {
  307. "type": "http-01",
  308. "status": "pending",
  309. "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125640",
  310. "token": ... long key ...,
  311. "keyAuthorization": ... long key ...
  312. }
  313. 2017-09-07 20:00:51,613:DEBUG:acme.client:Storing nonce: ... long key ...
  314. 2017-09-07 20:00:54,619:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI.
  315. 2017-09-07 20:00:54,835:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI HTTP/1.1" 200 1115
  316. 2017-09-07 20:00:54,841:DEBUG:acme.client:Received response:
  317. HTTP 200
  318. Server: nginx
  319. Content-Type: application/json
  320. Content-Length: 1115
  321. Boulder-Request-Id: ... long key ...
  322. Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
  323. Replay-Nonce: ... long key ...
  324. X-Frame-Options: DENY
  325. Strict-Transport-Security: max-age=604800
  326. Expires: Thu, 07 Sep 2017 20:00:54 GMT
  327. Cache-Control: max-age=0, no-cache, no-store
  328. Pragma: no-cache
  329. Date: Thu, 07 Sep 2017 20:00:54 GMT
  330. Connection: keep-alive
  331.  
  332. {
  333. "identifier": {
  334. "type": "dns",
  335. "value": "cloud.MYDOMAIN.COM"
  336. },
  337. "status": "pending",
  338. "expires": "2017-09-14T20:00:50Z",
  339. "challenges": [
  340. {
  341. "type": "http-01",
  342. "status": "pending",
  343. "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125640",
  344. "token": ... long key ...,
  345. "keyAuthorization": ... long key ...
  346. },
  347. {
  348. "type": "tls-sni-01",
  349. "status": "pending",
  350. "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125641",
  351. "token": ... long key ...
  352. },
  353. {
  354. "type": "dns-01",
  355. "status": "pending",
  356. "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125642",
  357. "token": ... long key ...
  358. }
  359. ],
  360. "combinations": [
  361. [
  362. 1
  363. ],
  364. [
  365. 2
  366. ],
  367. [
  368. 0
  369. ]
  370. ]
  371. }
  372. 2017-09-07 20:00:57,849:DEBUG:acme.client:Sending GET request to https://acme-v01.api.letsencrypt.org/acme/authz/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI.
  373. 2017-09-07 20:00:58,067:DEBUG:urllib3.connectionpool:https://acme-v01.api.letsencrypt.org:443 "GET /acme/authz/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI HTTP/1.1" 200 1739
  374. 2017-09-07 20:00:58,072:DEBUG:acme.client:Received response:
  375. HTTP 200
  376. Server: nginx
  377. Content-Type: application/json
  378. Content-Length: 1739
  379. Boulder-Request-Id: Jjj7XANeMmQ-s-MJ_Ux7WQMfUE3e-VrtEdj3yVc5Dqk
  380. Link: <https://acme-v01.api.letsencrypt.org/acme/new-cert>;rel="next"
  381. Replay-Nonce: ... long key ...
  382. X-Frame-Options: DENY
  383. Strict-Transport-Security: max-age=604800
  384. Expires: Thu, 07 Sep 2017 20:00:58 GMT
  385. Cache-Control: max-age=0, no-cache, no-store
  386. Pragma: no-cache
  387. Date: Thu, 07 Sep 2017 20:00:58 GMT
  388. Connection: keep-alive
  389.  
  390. {
  391. "identifier": {
  392. "type": "dns",
  393. "value": "cloud.MYDOMAIN.COM"
  394. },
  395. "status": "invalid",
  396. "expires": "2017-09-14T20:00:50Z",
  397. "challenges": [
  398. {
  399. "type": "http-01",
  400. "status": "invalid",
  401. "error": {
  402. "type": "urn:acme:error:connection",
  403. "detail": "Fetching http://cloud.MYDOMAIN.COM/.well-known/acme-challenge/UcPEqyxMdhM2BTT93GvVWm4wTw2cqVEvLPCCfKBfE8A: Timeout",
  404. "status": 400
  405. },
  406. "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125640",
  407. "token": ... long key ...,
  408. "keyAuthorization": ... long key ...,
  409. "validationRecord": [
  410. {
  411. "url": "http://cloud.MYDOMAIN.COM/.well-known/acme-challenge/UcPEqyxMdhM2BTT93GvVWm4wTw2cqVEvLPCCfKBfE8A",
  412. "hostname": "cloud.MYDOMAIN.COM",
  413. "port": "80",
  414. "addressesResolved": [
  415. "XX.XXX.XXX.XX"
  416. ],
  417. "addressUsed": "XX.XXX.XXX.XX",
  418. "addressesTried": []
  419. }
  420. ]
  421. },
  422. {
  423. "type": "tls-sni-01",
  424. "status": "pending",
  425. "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125641",
  426. "token": ... long key ...
  427. },
  428. {
  429. "type": "dns-01",
  430. "status": "pending",
  431. "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/DHx-azOwRCS5lKOZ5h_SxirhYKa50ncoXNPtgn03FbI/1934125642",
  432. "token": ... long key ...
  433. }
  434. ],
  435. "combinations": [
  436. [
  437. 1
  438. ],
  439. [
  440. 2
  441. ],
  442. [
  443. 0
  444. ]
  445. ]
  446. }
  447. 2017-09-07 20:00:58,079:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server:
  448.  
  449. Domain: cloud.MYDOMAIN.COM
  450. Type: connection
  451. Detail: Fetching http://cloud.MYDOMAIN.COM/.well-known/acme-challenge/UcPEqyxMdhM2BTT93GvVWm4wTw2cqVEvLPCCfKBfE8A: Timeout
  452.  
  453. To fix these errors, please make sure that your domain name was entered correctly and the DNS A record(s) for that domain contain(s) the right IP address. Additionally, please check that your computer has a publicly routable IP address and that no firewalls are preventing the server from communicating with the client. If you're using the webroot plugin, you should also verify that you are serving files from the webroot path you provided.
  454. 2017-09-07 20:00:58,081:INFO:certbot.auth_handler:Cleaning up challenges
  455. 2017-09-07 20:00:58,082:DEBUG:certbot_nextcloud_plugin.webroot:Removing /var/snap/nextcloud/current/certs/certbot/.well-known/acme-challenge/UcPEqyxMdhM2BTT93GvVWm4wTw2cqVEvLPCCfKBfE8A
  456. 2017-09-07 20:00:58,084:DEBUG:certbot_nextcloud_plugin.webroot:All challenges cleaned up, removing /var/snap/nextcloud/current/certs/certbot/.well-known/acme-challenge
  457. 2017-09-07 20:00:58,085:DEBUG:certbot.log:Exiting abnormally:
  458. Traceback (most recent call last):
  459. File "/snap/nextcloud/2713/bin/certbot", line 11, in <module>
  460. sys.exit(main())
  461. File "/snap/nextcloud/2713/lib/python2.7/site-packages/certbot/main.py", line 742, in main
  462. return config.func(config, plugins)
  463. File "/snap/nextcloud/2713/lib/python2.7/site-packages/certbot/main.py", line 682, in certonly
  464. lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
  465. File "/snap/nextcloud/2713/lib/python2.7/site-packages/certbot/main.py", line 82, in _get_and_save_cert
  466. lineage = le_client.obtain_and_enroll_certificate(domains, certname)
  467. File "/snap/nextcloud/2713/lib/python2.7/site-packages/certbot/client.py", line 344, in obtain_and_enroll_certificate
  468. certr, chain, key, _ = self.obtain_certificate(domains)
  469. File "/snap/nextcloud/2713/lib/python2.7/site-packages/certbot/client.py", line 313, in obtain_certificate
  470. self.config.allow_subset_of_names)
  471. File "/snap/nextcloud/2713/lib/python2.7/site-packages/certbot/auth_handler.py", line 81, in get_authorizations
  472. self._respond(resp, best_effort)
  473. File "/snap/nextcloud/2713/lib/python2.7/site-packages/certbot/auth_handler.py", line 138, in _respond
  474. self._poll_challenges(chall_update, best_effort)
  475. File "/snap/nextcloud/2713/lib/python2.7/site-packages/certbot/auth_handler.py", line 202, in _poll_challenges
  476. raise errors.FailedChallenges(all_failed_achalls)
  477. FailedChallenges: Failed authorization procedure. cloud.MYDOMAIN.COM (http-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Fetching http://cloud.MYDOMAIN.COM/.well-known/acme-challenge/UcPEqyxMdhM2BTT93GvVWm4wTw2cqVEvLPCCfKBfE8A: Timeout
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!