API tools faq
paste
nickmansrob

Untitled

nickmansrob
May 3rd, 2020
91
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 14.68 KB | None | 0 0
raw download clone embed print report
  1. 2020-05-03 20:02:34,705:DEBUG:certbot.main:certbot version: 0.31.0
  2. 2020-05-03 20:02:34,706:DEBUG:certbot.main:Arguments: ['--dns-cloudflare', '--dns-cloudflare-credentials', '/root/.secrets/certbot/cloudflare.ini', '-d', 'rndevelopment.ga']
  3. 2020-05-03 20:02:34,706:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#dns-cloudflare,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
  4. 2020-05-03 20:02:34,723:DEBUG:certbot.log:Root logging level set at 20
  5. 2020-05-03 20:02:34,742:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
  6. 2020-05-03 20:02:34,753:DEBUG:certbot.plugins.selection:Requested authenticator dns-cloudflare and installer None
  7. 2020-05-03 20:02:34,753:DEBUG:certbot.plugins.selection:Single candidate plugin: * dns-cloudflare
  8. Description: Obtain certificates using a DNS TXT record (if you are using Cloudflare for DNS).
  9. Interfaces: IAuthenticator, IPlugin
  10. Entry point: dns-cloudflare = certbot_dns_cloudflare.dns_cloudflare:Authenticator
  11. Initialized: <certbot_dns_cloudflare.dns_cloudflare.Authenticator object at 0x7f272515b4a8>
  12. Prep: True
  13. 2020-05-03 20:02:34,754:DEBUG:certbot.plugins.selection:Selected authenticator <certbot_dns_cloudflare.dns_cloudflare.Authenticator object at 0x7f272515b4a8> and installer None
  14. 2020-05-03 20:02:34,754:INFO:certbot.plugins.selection:Plugins selected: Authenticator dns-cloudflare, Installer None
  15. 2020-05-03 20:02:34,774:DEBUG:certbot.main:Picked account: <Account(RegistrationResource(body=Registration(key=None, contact=(), agreement=None, status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-v02.api.letsencrypt.org/acme/acct/85165158', new_authzr_uri=None, terms_of_service=None), 7cc5abe121abb1b2dae813d463c74ec7, Meta(creation_dt=datetime.datetime(2020, 5, 3, 17, 35, 16, tzinfo=<UTC>), creation_host='proxy.rndevelopment.ga'))>
  16. 2020-05-03 20:02:34,776:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
  17. 2020-05-03 20:02:34,780:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
  18. 2020-05-03 20:02:35,413:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 658
  19. 2020-05-03 20:02:35,414:DEBUG:acme.client:Received response:
  20. HTTP 200
  21. Server: nginx
  22. Date: Sun, 03 May 2020 18:02:35 GMT
  23. Content-Type: application/json
  24. Content-Length: 658
  25. Connection: keep-alive
  26. Cache-Control: public, max-age=0, no-cache
  27. X-Frame-Options: DENY
  28. Strict-Transport-Security: max-age=604800
  29.  
  30. {
  31. "CfADr5vVGQ4": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
  32. "keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
  33. "meta": {
  34. "caaIdentities": [
  35. "letsencrypt.org"
  36. ],
  37. "termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",
  38. "website": "https://letsencrypt.org"
  39. },
  40. "newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
  41. "newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
  42. "newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
  43. "revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
  44. }
  45. 2020-05-03 20:02:35,420:INFO:certbot.main:Obtaining a new certificate
  46. 2020-05-03 20:02:35,467:DEBUG:certbot.crypto_util:Generating key (2048 bits): /etc/letsencrypt/keys/0002_key-certbot.pem
  47. 2020-05-03 20:02:35,471:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/0002_csr-certbot.pem
  48. 2020-05-03 20:02:35,472:DEBUG:acme.client:Requesting fresh nonce
  49. 2020-05-03 20:02:35,472:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
  50. 2020-05-03 20:02:35,621:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
  51. 2020-05-03 20:02:35,622:DEBUG:acme.client:Received response:
  52. HTTP 200
  53. Server: nginx
  54. Date: Sun, 03 May 2020 18:02:35 GMT
  55. Connection: keep-alive
  56. Cache-Control: public, max-age=0, no-cache
  57. Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
  58. Replay-Nonce: 0002brhr_BACRPnpl8qQYNggSg_pY5ztmmAxvoCo2AENTBY
  59. X-Frame-Options: DENY
  60. Strict-Transport-Security: max-age=604800
  61.  
  62.  
  63. 2020-05-03 20:02:35,622:DEBUG:acme.client:Storing nonce: 0002brhr_BACRPnpl8qQYNggSg_pY5ztmmAxvoCo2AENTBY
  64. 2020-05-03 20:02:35,622:DEBUG:acme.client:JWS payload:
  65. b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "rndevelopment.ga"\n }\n ]\n}'
  66. 2020-05-03 20:02:35,625:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
  67. {
  68. "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvODUxNjUxNTgiLCAibm9uY2UiOiAiMDAwMmJyaHJfQkFDUlBucGw4cVFZTmdnU2dfcFk1enRtbUF4dm9DbzJBRU5UQlkiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL25ldy1vcmRlciJ9",
  69. "signature": "vbTlZ1ZCLx19M80AhYWPn-Nr0ppV0MRltCxACFQ1kzcMlRMk9XvK9M8XHTJ_99rymxDeADwp3LXMRxktTEBpuUNPD0eb79ahSukSpD97BG49yVEpmWh_OFUyHHfr7aZO302zMQsOHXE_dny81WF21lyLuNuK2yHuTlN_6owt_0Iu4CYbZPFyqwmo49qrfWVt6uIdz2tCH914e-3DSZ54hqKg_UBYo4DhXNJEj7elc-8CbM6DyKutA5-WIXjGFoAGUsqU4228R2XbUcy6lvOkHpwQF6VrS2HwjdXf8yGcf3hVbL8uOjlDZyYGUiXwbEQjE3sPlUf3aQVAAHl7BV9amQ",
  70. "payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogInJuZGV2ZWxvcG1lbnQuZ2EiCiAgICB9CiAgXQp9"
  71. }
  72. 2020-05-03 20:02:35,801:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 336
  73. 2020-05-03 20:02:35,801:DEBUG:acme.client:Received response:
  74. HTTP 201
  75. Server: nginx
  76. Date: Sun, 03 May 2020 18:02:35 GMT
  77. Content-Type: application/json
  78. Content-Length: 336
  79. Connection: keep-alive
  80. Boulder-Requester: 85165158
  81. Cache-Control: public, max-age=0, no-cache
  82. Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
  83. Location: https://acme-v02.api.letsencrypt.org/acme/order/85165158/3226269039
  84. Replay-Nonce: 0001UsGNrtH3pay0h_Gn-Yg2UDkwdANAAbcnQqhAOQ4BqMU
  85. X-Frame-Options: DENY
  86. Strict-Transport-Security: max-age=604800
  87.  
  88. {
  89. "status": "pending",
  90. "expires": "2020-05-10T17:35:24Z",
  91. "identifiers": [
  92. {
  93. "type": "dns",
  94. "value": "rndevelopment.ga"
  95. }
  96. ],
  97. "authorizations": [
  98. "https://acme-v02.api.letsencrypt.org/acme/authz-v3/4341020019"
  99. ],
  100. "finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/85165158/3226269039"
  101. }
  102. 2020-05-03 20:02:35,801:DEBUG:acme.client:Storing nonce: 0001UsGNrtH3pay0h_Gn-Yg2UDkwdANAAbcnQqhAOQ4BqMU
  103. 2020-05-03 20:02:35,802:DEBUG:acme.client:JWS payload:
  104. b''
  105. 2020-05-03 20:02:35,804:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/4341020019:
  106. {
  107. "protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvODUxNjUxNTgiLCAibm9uY2UiOiAiMDAwMVVzR05ydEgzcGF5MGhfR24tWWcyVURrd2RBTkFBYmNuUXFoQU9RNEJxTVUiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzQzNDEwMjAwMTkifQ",
  108. "signature": "NXw8uYbtVJeMaFa_lL7PTGmUTUlas5msmgMkE-3cTHS8Bax8Q4Z1ouyssGE4KT_q4H_49imrwIleLIfeW0KOWPSkAT-l5SfxOicXCyj3utEvPBMm5Tf043G1kuTbHWyY7W-wWWDKNB1c5r48YrKbP3IxK6ZEWJGjTnwZ7XGuyelqij-dSMp3nF5ohaKNq9qvkQHl4u-rq0yOyRnFBHanGsxjlnzcTuIyL-dYkwJmrGq0vMsnvWjjgx3Nk2Tb92diwbG6OFBiGirWN1_d5-SGs1ujdxV5zSPXKyFeuTXaaAEO3yPl1RXZe6e0RZVqEKUuk9nDKAKupeXe4YNFHh8tjA",
  109. "payload": ""
  110. }
  111. 2020-05-03 20:02:35,955:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/4341020019 HTTP/1.1" 200 794
  112. 2020-05-03 20:02:35,956:DEBUG:acme.client:Received response:
  113. HTTP 200
  114. Server: nginx
  115. Date: Sun, 03 May 2020 18:02:35 GMT
  116. Content-Type: application/json
  117. Content-Length: 794
  118. Connection: keep-alive
  119. Boulder-Requester: 85165158
  120. Cache-Control: public, max-age=0, no-cache
  121. Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
  122. Replay-Nonce: 0001t6W5NwfQkbmmIOailQzDhCB07eExqZ_Hoqu70h8XGvI
  123. X-Frame-Options: DENY
  124. Strict-Transport-Security: max-age=604800
  125.  
  126. {
  127. "identifier": {
  128. "type": "dns",
  129. "value": "rndevelopment.ga"
  130. },
  131. "status": "pending",
  132. "expires": "2020-05-10T17:35:24Z",
  133. "challenges": [
  134. {
  135. "type": "http-01",
  136. "status": "pending",
  137. "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/4341020019/YJzdig",
  138. "token": "3GsT9A76RZPgiR7CTzluocrCdzlq_zKLF-KkjMlzCrY"
  139. },
  140. {
  141. "type": "dns-01",
  142. "status": "pending",
  143. "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/4341020019/68sOPQ",
  144. "token": "3GsT9A76RZPgiR7CTzluocrCdzlq_zKLF-KkjMlzCrY"
  145. },
  146. {
  147. "type": "tls-alpn-01",
  148. "status": "pending",
  149. "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/4341020019/V5QMJg",
  150. "token": "3GsT9A76RZPgiR7CTzluocrCdzlq_zKLF-KkjMlzCrY"
  151. }
  152. ]
  153. }
  154. 2020-05-03 20:02:35,956:DEBUG:acme.client:Storing nonce: 0001t6W5NwfQkbmmIOailQzDhCB07eExqZ_Hoqu70h8XGvI
  155. 2020-05-03 20:02:35,957:INFO:certbot.auth_handler:Performing the following challenges:
  156. 2020-05-03 20:02:35,957:INFO:certbot.auth_handler:dns-01 challenge for rndevelopment.ga
  157. 2020-05-03 20:02:35,966:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): api.cloudflare.com:443
  158. 2020-05-03 20:02:36,283:DEBUG:urllib3.connectionpool:https://api.cloudflare.com:443 "GET /client/v4/zones?name=rndevelopment.ga&per_page=1 HTTP/1.1" 200 None
  159. 2020-05-03 20:02:36,284:DEBUG:certbot_dns_cloudflare.dns_cloudflare:Found zone_id of ef927dc2fece1c17b6a6b9de238a116f for rndevelopment.ga using name rndevelopment.ga
  160. 2020-05-03 20:02:36,284:DEBUG:certbot_dns_cloudflare.dns_cloudflare:Attempting to add record to zone ef927dc2fece1c17b6a6b9de238a116f: {'type': 'TXT', 'name': '_acme-challenge.rndevelopment.ga', 'content': 'tyNXAZzy6rxRmsjw6vlpbU9tPLeyY1B6MxzEcY1Itmc', 'ttl': 120}
  161. 2020-05-03 20:02:36,524:DEBUG:urllib3.connectionpool:https://api.cloudflare.com:443 "POST /client/v4/zones/ef927dc2fece1c17b6a6b9de238a116f/dns_records HTTP/1.1" 401 None
  162. 2020-05-03 20:02:36,528:DEBUG:certbot.error_handler:Encountered exception:
  163. Traceback (most recent call last):
  164. File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 75, in handle_authorizations
  165. resp = self._solve_challenges(aauthzrs)
  166. File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 139, in _solve_challenges
  167. resp = self.auth.perform(all_achalls)
  168. File "/usr/lib/python3/dist-packages/certbot/plugins/dns_common.py", line 57, in perform
  169. self._perform(domain, validation_domain_name, validation)
  170. File "/usr/lib/python3/dist-packages/certbot_dns_cloudflare/dns_cloudflare.py", line 52, in _perform
  171. self._get_cloudflare_client().add_txt_record(domain, validation_name, validation, self.ttl)
  172. File "/usr/lib/python3/dist-packages/certbot_dns_cloudflare/dns_cloudflare.py", line 89, in add_txt_record
  173. self.cf.zones.dns_records.post(zone_id, data=data) # zones | pylint: disable=no-member
  174. File "/usr/lib/python3/dist-packages/CloudFlare/cloudflare.py", line 632, in post
  175. params, data, files)
  176. File "/usr/lib/python3/dist-packages/CloudFlare/cloudflare.py", line 75, in call_with_auth
  177. params, data, files)
  178. File "/usr/lib/python3/dist-packages/CloudFlare/cloudflare.py", line 449, in _call
  179. code = errors['code']
  180. KeyError: 'code'
  181.  
  182. 2020-05-03 20:02:36,529:DEBUG:certbot.error_handler:Calling registered functions
  183. 2020-05-03 20:02:36,529:INFO:certbot.auth_handler:Cleaning up challenges
  184. 2020-05-03 20:02:36,532:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): api.cloudflare.com:443
  185. 2020-05-03 20:02:36,844:DEBUG:urllib3.connectionpool:https://api.cloudflare.com:443 "GET /client/v4/zones?name=rndevelopment.ga&per_page=1 HTTP/1.1" 200 None
  186. 2020-05-03 20:02:36,845:DEBUG:certbot_dns_cloudflare.dns_cloudflare:Found zone_id of ef927dc2fece1c17b6a6b9de238a116f for rndevelopment.ga using name rndevelopment.ga
  187. 2020-05-03 20:02:37,109:DEBUG:urllib3.connectionpool:https://api.cloudflare.com:443 "GET /client/v4/zones/ef927dc2fece1c17b6a6b9de238a116f/dns_records?type=TXT&name=_acme-challenge.rndevelopment.ga&content=tyNXAZzy6rxRmsjw6vlpbU9tPLeyY1B6MxzEcY1Itmc&per_page=1 HTTP/1.1" 200 None
  188. 2020-05-03 20:02:37,110:DEBUG:certbot_dns_cloudflare.dns_cloudflare:Unable to find TXT record.
  189. 2020-05-03 20:02:37,110:DEBUG:certbot_dns_cloudflare.dns_cloudflare:TXT record not found; no cleanup needed.
  190. 2020-05-03 20:02:37,111:DEBUG:certbot.log:Exiting abnormally:
  191. Traceback (most recent call last):
  192. File "/usr/bin/certbot", line 11, in <module>
  193. load_entry_point('certbot==0.31.0', 'console_scripts', 'certbot')()
  194. File "/usr/lib/python3/dist-packages/certbot/main.py", line 1365, in main
  195. return config.func(config, plugins)
  196. File "/usr/lib/python3/dist-packages/certbot/main.py", line 1250, in certonly
  197. lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
  198. File "/usr/lib/python3/dist-packages/certbot/main.py", line 121, in _get_and_save_cert
  199. lineage = le_client.obtain_and_enroll_certificate(domains, certname)
  200. File "/usr/lib/python3/dist-packages/certbot/client.py", line 410, in obtain_and_enroll_certificate
  201. cert, chain, key, _ = self.obtain_certificate(domains)
  202. File "/usr/lib/python3/dist-packages/certbot/client.py", line 353, in obtain_certificate
  203. orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
  204. File "/usr/lib/python3/dist-packages/certbot/client.py", line 389, in _get_order_and_authorizations
  205. authzr = self.auth_handler.handle_authorizations(orderr, best_effort)
  206. File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 75, in handle_authorizations
  207. resp = self._solve_challenges(aauthzrs)
  208. File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 139, in _solve_challenges
  209. resp = self.auth.perform(all_achalls)
  210. File "/usr/lib/python3/dist-packages/certbot/plugins/dns_common.py", line 57, in perform
  211. self._perform(domain, validation_domain_name, validation)
  212. File "/usr/lib/python3/dist-packages/certbot_dns_cloudflare/dns_cloudflare.py", line 52, in _perform
  213. self._get_cloudflare_client().add_txt_record(domain, validation_name, validation, self.ttl)
  214. File "/usr/lib/python3/dist-packages/certbot_dns_cloudflare/dns_cloudflare.py", line 89, in add_txt_record
  215. self.cf.zones.dns_records.post(zone_id, data=data) # zones | pylint: disable=no-member
  216. File "/usr/lib/python3/dist-packages/CloudFlare/cloudflare.py", line 632, in post
  217. params, data, files)
  218. File "/usr/lib/python3/dist-packages/CloudFlare/cloudflare.py", line 75, in call_with_auth
  219. params, data, files)
  220. File "/usr/lib/python3/dist-packages/CloudFlare/cloudflare.py", line 449, in _call
  221. code = errors['code']
  222. KeyError: 'code'
  223. 2020-05-03 20:02:37,115:ERROR:certbot.log:An unexpected error occurred:
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!