Exactly which files are created by the webroot plugin?

aguyinmontreal · May 30, 2018, 7:14pm

The documentation says here that the webroot plugin creates multiple files in the ${webroot-path}/.well-known/acme-challenge directory (for purposes of the "http-01" test).

The webroot plugin works by creating a temporary file for each of your requested domains in ${webroot-path}/.well-known/acme-challenge. Then the Let’s Encrypt validation server makes HTTP requests to validate that the DNS for each requested domain resolves to the server running certbot.

But what exactly are their filenames and extensions ?

I would need to put them in my CDN's "do not cache" list.

Thank you!

schoen · May 30, 2018, 7:41pm

There are no extensions, but the filenames are chosen randomly by the certificate authority each time and are not predictable ahead of time!

jared.m · May 30, 2018, 7:55pm

You should probably just set your CDN to not cache anything from .well-known/acme-challenge.

aguyinmontreal · May 30, 2018, 8:18pm

Alright, so if I understand correctly, the filenames will always be different for each renewal attempt?

schoen · May 30, 2018, 8:21pm

Yes, that's correct.

system · June 29, 2018, 8:21pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
[[webroot_map]] Help	4	6213	May 1, 2018
Webroot plugin and server configuration Server	7	7104	October 22, 2016
Please document the webroot ".well-known" request path Feature Requests	12	3262	February 11, 2023
Why does a webroot-path have to be supplied? Help	7	948	May 15, 2019
Concurrent invocations of certbot using webroot Client dev	2	1493	December 18, 2016

Exactly which files are created by the webroot plugin?

Related topics