Certificate for php app

Help
#1

Hi

I try to install a certificate on a nginx (1.10.3) ubuntu 16.04 server running php 7 and atom 2.4 (an archival description application written in php from https://www.accesstomemory.org/)

When I use the following command:
sudo certbot --authenticator webfoot --installer nginx
I get the following message:
IMPORTANT NOTES:

  • The following errors were reported by the server:

    Domain: zeg-archive.at
    Type: unauthorized
    Detail: Invalid response from
    http://zeg-archive.at/.well-known/acme-challenge/anH4bvsj12TYlfF6m3bbSvcGAbOxnE5jkVQlVf5fGHA:
    "

    404 Not Found

    404 Not Found

    "

    To fix these errors, please make sure that your domain name was
    entered correctly and the DNS A/AAAA record(s) for that domain
    contain(s) the right IP address.

  • Your account credentials have been saved in your Certbot
    configuration directory at /etc/letsencrypt. You should make a
    secure backup of this folder now. This configuration directory will
    also contain certificates and private keys obtained by Certbot so
    making regular backups of this folder is ideal.

nginx settings are

upstream atom {
server unix:/run/php7.0-fpm.atom.sock;
}

server {

listen 80 default_server;
root /usr/share/nginx/atom;

http://wiki.nginx.org/HttpCoreModule#server_name

_ means catch any, but it’s better if you replace this with your server

name, e.g. archives.foobar.com

server_name zeg-archive.at;

client_max_body_size 72M;

http://wiki.nginx.org/HttpCoreModule#try_files

location / {
try_files $uri /index.php?$args;
}

location ~ /. {
deny all;
return 404;
}

location ~* (.yml|.ini|.tmpl)$ {
deny all;
return 404;
}

location ~* /(?:uploads|files)/.*.php$ {
deny all;
return 404;
}

location ~* /uploads/r/(.*)/conf/ {

}

location ~* ^/uploads/r/(.*)$ {
include /etc/nginx/fastcgi_params;
set $index /index.php;
fastcgi_param SCRIPT_FILENAME $document_root$index;
fastcgi_param SCRIPT_NAME $index;
fastcgi_pass atom;
}

location ~ ^/private/(.*)$ {
internal;
alias /usr/share/nginx/atom/$1;
}

location ~ ^/(index|qubit_dev).php(/|$) {
include /etc/nginx/fastcgi_params;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_split_path_info ^(.+.php)(/.*)$;
fastcgi_pass atom;
}

location ~* .php$ {
deny all;
return 404;
}

}

My hosting provider, if applicable, is: edis.at

I can login to a root shell on my machine (yes or no, or I don’t know): yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):no

#2

Hmm... I wonder if the forum ate a backslash here. Is this actually exactly as it appears in your config file, or is it rather:

location ~ /\. {

If so, try changing it to:

location ~ /\.(?!well-known/) {
#3

Hi John

thank you! That was it. As you wrote the line was location ~/. { . I added the value as you wrote and now it works. Thank you.

Christian

1 Like
#4

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.