My domain is:
underheaven.net
I ran this command:
docker-compose.yml
cloudflare.ini
It produced this output:
2020-05-26 16:25:28,541:DEBUG:certbot._internal.main:certbot version: 1.4.0 2020-05-26 16:25:28,542:DEBUG:certbot._internal.main:Arguments: ['--dns-cloudflare', '--dns-cloudflare-credentials', '/.secrets/certbot/cloudflare.ini', '-d', '*.underheaven.net'] 2020-05-26 16:25:28,542:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#dns-cloudflare,PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot) 2020-05-26 16:25:28,564:DEBUG:certbot._internal.log:Root logging level set at 20 2020-05-26 16:25:28,564:INFO:certbot._internal.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log 2020-05-26 16:25:28,565:DEBUG:certbot._internal.plugins.selection:Requested authenticator dns-cloudflare and installer None 2020-05-26 16:25:28,571:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * dns-cloudflare Description: Obtain certificates using a DNS TXT record (if you are using Cloudflare for DNS). Interfaces: IAuthenticator, IPlugin Entry point: dns-cloudflare = certbot_dns_cloudflare._internal.dns_cloudflare:Authenticator Initialized: <certbot_dns_cloudflare._internal.dns_cloudflare.Authenticator object at 0x7f7897c97f10> Prep: True 2020-05-26 16:25:28,572:DEBUG:certbot._internal.plugins.selection:Selected authenticator <certbot_dns_cloudflare._internal.dns_cloudflare.Authenticator object at 0x7f7897c97f10> and installer None 2020-05-26 16:25:28,572:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator dns-cloudflare, Installer None 2020-05-26 16:25:28,572:DEBUG:certbot._internal.log:Exiting abnormally: Traceback (most recent call last): File "/usr/local/bin/certbot", line 11, in <module> load_entry_point('certbot', 'console_scripts', 'certbot')() File "/opt/certbot/src/certbot/certbot/main.py", line 15, in main return internal_main.main(cli_args) File "/opt/certbot/src/certbot/certbot/_internal/main.py", line 1347, in main return config.func(config, plugins) File "/opt/certbot/src/certbot/certbot/_internal/main.py", line 1217, in certonly le_client = _init_le_client(config, auth, installer) File "/opt/certbot/src/certbot/certbot/_internal/main.py", line 603, in _init_le_client acc, acme = _determine_account(config) File "/opt/certbot/src/certbot/certbot/_internal/main.py", line 516, in _determine_account config.email = display_ops.get_email() File "/opt/certbot/src/certbot/certbot/display/ops.py", line 50, in get_email code, email = z_util(interfaces.IDisplay).input( File "/opt/certbot/src/certbot/certbot/display/util.py", line 178, in input ans = input_with_timeout(message) File "/opt/certbot/src/certbot/certbot/display/util.py", line 85, in input_with_timeout raise EOFError EOFError 2020-05-26 16:25:28,574:ERROR:certbot._internal.log:An unexpected error occurred:
My web server is (include version):
nginx version: nginx/1.17.10
Running on nginx:alpine
image
The operating system my web server runs on is (include version):
Host: Linux underheaven-3 5.3.0-51-generic #44~18.04.2-Ubuntu SMP Thu Apr 23 14:27:18 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux
Container: Linux aab20eeadb0c 5.3.0-51-generic #44~18.04.2-Ubuntu SMP Thu Apr 23 14:27:18 UTC 2020 x86_64 Linux
My hosting provider, if applicable, is:
Self-hosted, running on Docker containers, also using CloudFlare for DNS/DDOS prevention services
I can login to a root shell on my machine (yes or no, or I don't know):
Yes.
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
Only Namecheap and CloudFlare control panels. Everything else CLI.
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot):
I don't think I can check it since it automatically turns off after executing the "main" command and there is no way to run side commands when the main process isn't running.
I can assume it's the newest version 1.4.0
because whenever I make changes I don't reload the containers, but delete them and create them again with
docker-compose down -v
and docker-compose up -d
I disabled proxy for underheaven.net
on CloudFlare (www.underheaven.net is proxied) so I'd be able to use my own certificate (I want to use one wildcard certificate for everything) and enabled Full
mode.
Also I'm using dns-cloudflare because my website will be HTTPS-only and it could cause issues using other methods AFAIK like The chicken or the egg?
problem as some article metnioned.
When going on the site, NET::ERR_CERT_AUTHORITY_INVALID
is caused due to me using origin certificates from CloudFlare, which then I learned are only trusted by CloudFlare and not the browsers.
EDIT:
Forgot to mention, certbot's directory for SSL is different for testing, but none were generated nonetheless.