I don’t understand so well how letsencrypt works. I have no experience about certificates at all either.
I have a website in HTTPS (certificate provided by another 3rd party, not letsencrypt AFAIK) at https://staging.studylink.fr/simulateur
This website communicates through AJAX with http://staging.simulator-backend.studylink.fr which is a node.js backend (Hapi.js) behind a nginx proxy, under ubuntu 16.04.
Currently, http://staging.simulator-backend.studylink.fr doesn’t have a valid certificate. I setup yesterday a self-signed certificate, but it doesn’t fix the issue, since it requires manual operation of whitelisting the domain anyway. Even though it’s only staging and not prod, I need something clean (ISO prod).
My conclusion is that I need a valid certificate for my staging environment. I don’t see any other way. (my first thought was that since it’s only AJAX request, a self-signed certificate may be enough, would just generate a warning of sort by would sill work, seems like I was mistaken)
My self signed certificate generated 3 files (crt, csr and key), my node application loads both key and crt file upon startup.
How can I generate those files with letsencrypt? I went through the “certbot-auto” but didn’t understand everything and it eventually failed in my dev environment (couldn’t verify the authenticity of the web server or something). It seems it can change the nginx configuration and all, but the only thing I think I need is to generate those files and load them when starting my app. But I could be wrong.
My domain is: http://staging.simulator-backend.studylink.fr
I ran this command: None
My web server is (include version): None in dev, nginx as proxy in staging/prod
The operating system my web server runs on is (include version):
Dev env: Ubuntu 17.10
Staging env: Ubuntu 16.04.03
My hosting provider, if applicable, is: OVH
I can login to a root shell on my machine (yes or no, or I don’t know): Yes