File "...", line 368, in _get_order_and_authorizations
raise errors.Error("The currently selected ACME CA endpoint does"
certbot.errors.Error: The currently selected ACME CA endpoint does not support issuing wildcard certificates.
From the output it seems it’s trying to connect to a v1 endpoint http://boulder:4000/terms/v1. How can I connect to the v2 directory running on localhost:4000?
The Wildcard feature is enabled in test/config/ca.json.
For ACME v2 you need to use --server http://localhost:4001/directory to match the listenAddress of the WFE2 service configured in test/config/wfe2.json.
The API versions are separated by frontend and port (wfe vs wfe2 and 4000 vs 4001 respectively).
The components behind the WFE are the same whether you are/aren't using ACMEv2. There are some backend RPCs that are only used by the new API (e.g. the Storage Authority's NewOrder RPC) but there isn't an API division throughout all of the components beyond the WFE/WFE2.
I was almost sure it was a trivial answer, I just could not figure it out. I tried different prefixes, but I did not realize docker was instead listening on different ports.