2024-11-20 14:54:10,988:DEBUG:urllib3.connectionpool:http://localhost:None "GET /v2/connections?snap=certbot&interface=content HTTP/1.1" 200 97
2024-11-20 14:54:11,193:DEBUG:certbot._internal.main:certbot version: 3.0.1
2024-11-20 14:54:11,194:DEBUG:certbot._internal.main:Location of certbot entry point: /snap/certbot/4193/bin/certbot
2024-11-20 14:54:11,194:DEBUG:certbot._internal.main:Arguments: ['--nginx', '--preconfigured-renewal']
2024-11-20 14:54:11,194:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#apache,PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2024-11-20 14:54:11,212:DEBUG:certbot._internal.log:Root logging level set at 30
2024-11-20 14:54:11,213:DEBUG:certbot._internal.plugins.selection:Requested authenticator nginx and installer nginx
2024-11-20 14:54:11,363:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Authenticator, Installer, Plugin
Entry point: EntryPoint(name='nginx', value='certbot_nginx._internal.configurator:NginxConfigurator', group='certbot.plugins')
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0x73ade836c620>
Prep: True
2024-11-20 14:54:11,363:DEBUG:certbot._internal.plugins.selection:Selected authenticator <certbot_nginx._internal.configurator.NginxConfigurator object at 0x73ade836c620> and installer <certbot_nginx._internal.configurator.NginxConfigurator object at 0x73ade836c620>
2024-11-20 14:54:11,363:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator nginx, Installer nginx
2024-11-20 14:54:11,447:DEBUG:certbot._internal.main:Picked account: <Account(RegistrationResource(body=Registration(key=None, contact=(), agreement=None, status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-v02.api.letsencrypt.org/acme/acct/2066269337', new_authzr_uri=None, terms_of_service=None), 7f7db26b096e7cb858f5cf1e5f0d1147, Meta(creation_dt=datetime.datetime(2024, 11, 19, 20, 28, 31, tzinfo=<UTC>), creation_host='iz-biz.com', register_to_eff=None))>
2024-11-20 14:54:11,448:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
2024-11-20 14:54:11,449:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
2024-11-20 14:54:11,908:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 746
2024-11-20 14:54:11,909:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Wed, 20 Nov 2024 14:54:11 GMT
Content-Type: application/json
Content-Length: 746
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"DD-t0fgv2FA": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
"keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
"meta": {
"caaIdentities": [
"letsencrypt.org"
],
"termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.4-April-3-2024.pdf",
"website": "https://letsencrypt.org"
},
"newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
"newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
"newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
"renewalInfo": "https://acme-v02.api.letsencrypt.org/draft-ietf-acme-ari-03/renewalInfo",
"revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
}
2024-11-20 14:54:11,917:DEBUG:certbot.util:Not suggesting name "_"
Traceback (most recent call last):
File "/snap/certbot/4193/lib/python3.12/site-packages/certbot/util.py", line 389, in get_filtered_names
filtered_names.add(enforce_le_validity(name))
^^^^^^^^^^^^^^^^^^^^^^^^^
File "/snap/certbot/4193/lib/python3.12/site-packages/certbot/util.py", line 575, in enforce_le_validity
raise errors.ConfigurationError(
certbot.errors.ConfigurationError: _ contains an invalid character. Valid characters are A-Z, a-z, 0-9, ., and -.
2024-11-20 14:54:15,792:DEBUG:certbot._internal.display.obj:Notifying user: Requesting a certificate for iz-biz.com and 2 more domains
2024-11-20 14:54:15,803:DEBUG:acme.client:Requesting fresh nonce
2024-11-20 14:54:15,804:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
2024-11-20 14:54:15,955:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
2024-11-20 14:54:15,956:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Wed, 20 Nov 2024 14:54:15 GMT
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: q3AS6Q6nk-DG7pJYY8pPG--tLbr82mdf1QAMLq2nCDDOXM5iv3Y
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
2024-11-20 14:54:15,956:DEBUG:acme.client:Storing nonce: q3AS6Q6nk-DG7pJYY8pPG--tLbr82mdf1QAMLq2nCDDOXM5iv3Y
2024-11-20 14:54:15,957:DEBUG:acme.client:JWS payload:
b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "iz-biz.com"\n },\n {\n "type": "dns",\n "value": "api.iz-biz.com"\n },\n {\n "type": "dns",\n "value": "www.iz-biz.com"\n }\n ]\n}'
2024-11-20 14:54:15,962:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjA2NjI2OTMzNyIsICJub25jZSI6ICJxM0FTNlE2bmstREc3cEpZWThwUEctLXRMYnI4Mm1kZjFRQU1McTJuQ0RET1hNNWl2M1kiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL25ldy1vcmRlciJ9",
"signature": "Ff0ztf-1HYLMe_9wCcV4dYmuFqFjVfDC2RJAHKQx1JMbjf-XUEFufPkDqZu7pwtzOiJu34DeD8jguwqLkuyVeABdHVm5k34wfDOOFlPM4R59s3JhO0ckq3X6RvTjvC7pWVgPp5vMrmyIuKOihiQus8QO3SKw_X-zpgyyLbM8K42DOlcrxJepbfW89mUkV_QHwWyJ3s_zavHqlcg4aOY1HT0jyBTMcWgBjDXc0n0aevfo_h-84eWSV78rOUel4lxz8qWNlegAONYJTVLoZWNPAj2X9hqf3NfF6gtvpyb2doSp2DoKu25h2LBp39Fm9PNLywE9tpEdHLOmY1cm0DY7bQ",
"payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogIml6LWJpei5jb20iCiAgICB9LAogICAgewogICAgICAidHlwZSI6ICJkbnMiLAogICAgICAidmFsdWUiOiAiYXBpLml6LWJpei5jb20iCiAgICB9LAogICAgewogICAgICAidHlwZSI6ICJkbnMiLAogICAgICAidmFsdWUiOiAid3d3Lml6LWJpei5jb20iCiAgICB9CiAgXQp9"
}
2024-11-20 14:54:16,172:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 610
2024-11-20 14:54:16,173:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Date: Wed, 20 Nov 2024 14:54:16 GMT
Content-Type: application/json
Content-Length: 610
Connection: keep-alive
Boulder-Requester: 2066269337
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-v02.api.letsencrypt.org/acme/order/2066269337/325031173517
Replay-Nonce: q3AS6Q6nC-HiDc8Cez-bZkceM_fXQicGS8MXCN5kwkx7K1zwyo4
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"status": "pending",
"expires": "2024-11-27T14:54:16Z",
"identifiers": [
{
"type": "dns",
"value": "api.iz-biz.com"
},
{
"type": "dns",
"value": "iz-biz.com"
},
{
"type": "dns",
"value": "www.iz-biz.com"
}
],
"authorizations": [
"https://acme-v02.api.letsencrypt.org/acme/authz-v3/432937912137",
"https://acme-v02.api.letsencrypt.org/acme/authz-v3/432937912147",
"https://acme-v02.api.letsencrypt.org/acme/authz-v3/432937912157"
],
"finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/2066269337/325031173517"
}
2024-11-20 14:54:16,173:DEBUG:acme.client:Storing nonce: q3AS6Q6nC-HiDc8Cez-bZkceM_fXQicGS8MXCN5kwkx7K1zwyo4
2024-11-20 14:54:16,174:DEBUG:acme.client:JWS payload:
b''
2024-11-20 14:54:16,177:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/432937912137:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjA2NjI2OTMzNyIsICJub25jZSI6ICJxM0FTNlE2bkMtSGlEYzhDZXotYlprY2VNX2ZYUWljR1M4TVhDTjVrd2t4N0sxend5bzQiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzQzMjkzNzkxMjEzNyJ9",
"signature": "dQJayL0j4xn7ZOEdLQsMkdUZE_E_mM0I7Ytp9mIhs11nc4ksD-d3FJqt8wOT0qpYPWO2Gac2g4NMYAoYUCoE-qytiVYk8CQcAo91NLmFxHZhA4ib_TUXLi6Kju48FSe-Sqx7Ee0fBFjUPQgDVt0K_mG-RZPAVd5Z085bs-JmZu9qStBtb-FohB4n0TlsrpGK47RtSY11v77UkE3agIrmEFl7XJ76gQnLMHnaTK9uG3XgIbiLVC5hWI-3QIwQhZHNUoZXHi9PMwTBYRjtD5-Cs9lgJ_hV2aStd3mWoiuOu_FJiZU9VUSXugdwBnnuAIEVUmwsMLWNBBK1NZS94mLMiA",
"payload": ""
}
2024-11-20 14:54:16,343:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/432937912137 HTTP/1.1" 200 798
2024-11-20 14:54:16,344:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Wed, 20 Nov 2024 14:54:16 GMT
Content-Type: application/json
Content-Length: 798
Connection: keep-alive
Boulder-Requester: 2066269337
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: q3AS6Q6nC8H5ykLfR0AUaV6dBwu6ly2MIyWj4_KEkEoHJ1mVnKc
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "api.iz-biz.com"
},
"status": "pending",
"expires": "2024-11-27T14:54:16Z",
"challenges": [
{
"type": "tls-alpn-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912137/RYs3qg",
"status": "pending",
"token": "acKDc06LS_9Lo3bgLlqVPR6tQEgrfKNZmjA8XtvlHr0"
},
{
"type": "dns-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912137/jUTplw",
"status": "pending",
"token": "acKDc06LS_9Lo3bgLlqVPR6tQEgrfKNZmjA8XtvlHr0"
},
{
"type": "http-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912137/8mvIjQ",
"status": "pending",
"token": "acKDc06LS_9Lo3bgLlqVPR6tQEgrfKNZmjA8XtvlHr0"
}
]
}
2024-11-20 14:54:16,344:DEBUG:acme.client:Storing nonce: q3AS6Q6nC8H5ykLfR0AUaV6dBwu6ly2MIyWj4_KEkEoHJ1mVnKc
2024-11-20 14:54:16,345:DEBUG:acme.client:JWS payload:
b''
2024-11-20 14:54:16,348:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/432937912147:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjA2NjI2OTMzNyIsICJub25jZSI6ICJxM0FTNlE2bkM4SDV5a0xmUjBBVWFWNmRCd3U2bHkyTUl5V2o0X0tFa0VvSEoxbVZuS2MiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzQzMjkzNzkxMjE0NyJ9",
"signature": "KkMv-sWj3Bnwdwe7N5HcN6c99jLjSCa2cO64q2BMeLwOMjGZOksx6jWODq8VYo9jU1fxaRJmxsIWdx5LdxwtmHlUdbSpxhZ5O4ocJ1Z-wtMG1N4goDhXp9rqJmTmNAmDao-OfrhU5QWDT5jFGABg95tAKsfQZMlDhWA__AuJFoJ0JAZz4qGhgyXFwodS11hD6K_hiv6Bfgsjnc4PZowN9pWMuaBIfU7XiPz9JiRssPzFyR6HPFEzKh8wNdpWchQWjnoJlUih_ImKvYGnLkFxAFni5rY5TNeyqgo91JjHXjal9sC3prsv7LONqxP_ZxiLrh_NS5rUtSOukjc1RObYNQ",
"payload": ""
}
2024-11-20 14:54:16,504:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/432937912147 HTTP/1.1" 200 794
2024-11-20 14:54:16,505:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Wed, 20 Nov 2024 14:54:16 GMT
Content-Type: application/json
Content-Length: 794
Connection: keep-alive
Boulder-Requester: 2066269337
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: nHAuMvoxqirD0N2my8ug0gEumyOWvk8Wkl7deAkSlcQxvP2Rmt4
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "iz-biz.com"
},
"status": "pending",
"expires": "2024-11-27T14:54:16Z",
"challenges": [
{
"type": "tls-alpn-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912147/XwRUOQ",
"status": "pending",
"token": "8YLW9cy4x1BRbkOEM8ocSKzTvXFhHnlSd6RIaQqj8pc"
},
{
"type": "http-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912147/9gXoZg",
"status": "pending",
"token": "8YLW9cy4x1BRbkOEM8ocSKzTvXFhHnlSd6RIaQqj8pc"
},
{
"type": "dns-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912147/ot4gjA",
"status": "pending",
"token": "8YLW9cy4x1BRbkOEM8ocSKzTvXFhHnlSd6RIaQqj8pc"
}
]
}
2024-11-20 14:54:16,506:DEBUG:acme.client:Storing nonce: nHAuMvoxqirD0N2my8ug0gEumyOWvk8Wkl7deAkSlcQxvP2Rmt4
2024-11-20 14:54:16,507:DEBUG:acme.client:JWS payload:
b''
2024-11-20 14:54:16,509:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/432937912157:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjA2NjI2OTMzNyIsICJub25jZSI6ICJuSEF1TXZveHFpckQwTjJteTh1ZzBnRXVteU9Xdms4V2tsN2RlQWtTbGNReHZQMlJtdDQiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzQzMjkzNzkxMjE1NyJ9",
"signature": "gO6YYDRVONgaYdE3N47iZTtgmDs4nIOviV-gLt_aa5rHEqGudgNmmbA-5PLs98eJhyYICM0m5xdzMw66x2UwDhtW_XlKefE4v8vPHasQHBEQWVjLSO_ArixWsKwkC5eG2WQRrxJR73uPC7pHh87jOfdoDBtYkjJJ1NzsS6Km8xOT9xrko12GXXBoKYWUZUxSXGACwcMiU9D4T-QJJ08S3IH-7OtZXVLpbUpODMf9U5A7oPCNCNFh0pDGUtbbEyXiLhj2U2JBZa_jEA9quMpS6ulxRhrv5o_EbXgrsahSbeVq_JDfeXL732NGbrhATg4zlAJXS6Pns9yqfSXAnYyL4g",
"payload": ""
}
2024-11-20 14:54:16,662:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/432937912157 HTTP/1.1" 200 798
2024-11-20 14:54:16,663:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Wed, 20 Nov 2024 14:54:16 GMT
Content-Type: application/json
Content-Length: 798
Connection: keep-alive
Boulder-Requester: 2066269337
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: nHAuMvoxT0CB6VUa2w4hlEUp2H_-CydxrLRPi5pfF4avdzquYSQ
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "www.iz-biz.com"
},
"status": "pending",
"expires": "2024-11-27T14:54:16Z",
"challenges": [
{
"type": "http-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912157/V63w4g",
"status": "pending",
"token": "jN0D__N1Gf55XsfD-h7SWV3mwHRxRlXV6nlD3KMLPKE"
},
{
"type": "dns-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912157/Ey0sqw",
"status": "pending",
"token": "jN0D__N1Gf55XsfD-h7SWV3mwHRxRlXV6nlD3KMLPKE"
},
{
"type": "tls-alpn-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912157/Kwotpg",
"status": "pending",
"token": "jN0D__N1Gf55XsfD-h7SWV3mwHRxRlXV6nlD3KMLPKE"
}
]
}
2024-11-20 14:54:16,664:DEBUG:acme.client:Storing nonce: nHAuMvoxT0CB6VUa2w4hlEUp2H_-CydxrLRPi5pfF4avdzquYSQ
2024-11-20 14:54:16,665:INFO:certbot._internal.auth_handler:Performing the following challenges:
2024-11-20 14:54:16,665:INFO:certbot._internal.auth_handler:http-01 challenge for api.iz-biz.com
2024-11-20 14:54:16,665:INFO:certbot._internal.auth_handler:http-01 challenge for iz-biz.com
2024-11-20 14:54:16,665:INFO:certbot._internal.auth_handler:http-01 challenge for www.iz-biz.com
2024-11-20 14:54:16,727:DEBUG:certbot_nginx._internal.http_01:Generated server block:
[]
2024-11-20 14:54:16,727:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/izbiz-front.conf
2024-11-20 14:54:16,728:DEBUG:certbot.reverter:Creating backup of /etc/nginx/nginx.conf
2024-11-20 14:54:16,728:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/izbiz.conf
2024-11-20 14:54:16,729:DEBUG:certbot.reverter:Creating backup of /etc/nginx/mime.types
2024-11-20 14:54:16,729:DEBUG:certbot.reverter:Creating backup of /etc/nginx/sites-enabled/default
2024-11-20 14:54:16,730:DEBUG:certbot_nginx._internal.parser:Writing nginx conf tree to /etc/nginx/nginx.conf:
user www-data;
worker_processes auto;
pid /run/nginx.pid;
error_log /var/log/nginx/error.log;
include /etc/nginx/modules-enabled/*.conf;
events {
worker_connections 768;
# multi_accept on;
}
http {
server_names_hash_bucket_size 128;
include /etc/letsencrypt/le_http_01_cert_challenge.conf;
##
# Basic Settings
##
sendfile on;
tcp_nopush on;
types_hash_max_size 2048;
# server_tokens off;
# server_names_hash_bucket_size 64;
# server_name_in_redirect off;
include /etc/nginx/mime.types;
default_type application/octet-stream;
##
# SSL Settings
##
ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3; # Dropping SSLv3, ref: POODLE
ssl_prefer_server_ciphers on;
##
# Logging Settings
##
access_log /var/log/nginx/access.log;
##
# Gzip Settings
##
gzip on;
# gzip_vary on;
# gzip_proxied any;
# gzip_comp_level 6;
# gzip_buffers 16 8k;
# gzip_http_version 1.1;
# gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript;
##
# Virtual Host Configs
##
include /etc/nginx/conf.d/*.conf;
include /etc/nginx/sites-enabled/*;
}
#mail {
# # See sample authentication script at:
# # http://wiki.nginx.org/ImapAuthenticateWithApachePhpScript
#
# # auth_http localhost/auth.php;
# # pop3_capabilities "TOP" "USER";
# # imap_capabilities "IMAP4rev1" "UIDPLUS";
#
# server {
# listen localhost:110;
# protocol pop3;
# proxy on;
# }
#
# server {
# listen localhost:143;
# protocol imap;
# proxy on;
# }
#}
2024-11-20 14:54:16,731:DEBUG:certbot_nginx._internal.parser:Writing nginx conf tree to /etc/nginx/sites-enabled/izbiz-front.conf:
server {rewrite ^(/.well-known/acme-challenge/.*) $1 break; # managed by Certbot
rewrite ^(/.well-known/acme-challenge/.*) $1 break; # managed by Certbot
listen 80;
server_name iz-biz.com www.iz-biz.com;
charset utf-8;
root /var/www/izbiz-front/dist;
index index.html;
#Always serve index.html for any request
location / {
root /var/www/izbiz-front/dist;
try_files $uri /index.html;
}
error_log /var/log/nginx/izbiz-front-error.log;
access_log /var/log/nginx/izbiz-front-access.log;
location = /.well-known/acme-challenge/8YLW9cy4x1BRbkOEM8ocSKzTvXFhHnlSd6RIaQqj8pc{default_type text/plain;return 200 8YLW9cy4x1BRbkOEM8ocSKzTvXFhHnlSd6RIaQqj8pc.fXVfyF0QPP8Pj-GYpMwkqH9WML-Vyb8zFIby6rwIwOA;} # managed by Certbot
location = /.well-known/acme-challenge/jN0D__N1Gf55XsfD-h7SWV3mwHRxRlXV6nlD3KMLPKE{default_type text/plain;return 200 jN0D__N1Gf55XsfD-h7SWV3mwHRxRlXV6nlD3KMLPKE.fXVfyF0QPP8Pj-GYpMwkqH9WML-Vyb8zFIby6rwIwOA;} # managed by Certbot
}
2024-11-20 14:54:16,732:DEBUG:certbot_nginx._internal.parser:Writing nginx conf tree to /etc/nginx/sites-enabled/izbiz.conf:
server {rewrite ^(/.well-known/acme-challenge/.*) $1 break; # managed by Certbot
server_name api.iz-biz.com;
root /var/www/izbiz/public;
location / {
# try to serve file directly, fallback to index.php
try_files $uri /index.php$is_args$args;
}
# optionally disable falling back to PHP script for the asset directories;
# nginx will return a 404 error when files are not found instead of passing the
# request to Symfony (improves performance but Symfony's 404 page is not displayed)
# location /bundles {
# try_files $uri =404;
# }
location ~ ^/index\.php(/|$) {
# when using PHP-FPM as a unix socket
fastcgi_pass unix:/var/run/php/php8.3-fpm.sock;
# when PHP-FPM is configured to use TCP
# fastcgi_pass 127.0.0.1:9000;
fastcgi_split_path_info ^(.+\.php)(/.*)$;
include fastcgi_params;
# optionally set the value of the environment variables used in the application
# fastcgi_param APP_ENV prod;
# fastcgi_param APP_SECRET <app-secret-id>;
# fastcgi_param DATABASE_URL "mysql://db_user:db_pass@host:3306/db_name";
# When you are using symlinks to link the document root to the
# current version of your application, you should pass the real
# application path instead of the path to the symlink to PHP
# FPM.
# Otherwise, PHP's OPcache may not properly detect changes to
# your PHP files (see https://github.com/zendtech/ZendOptimizerPlus/issues/126
# for more information).
# Caveat: When PHP-FPM is hosted on a different machine from nginx
# $realpath_root may not resolve as you expect! In this case try using
# $document_root instead.
fastcgi_param SCRIPT_FILENAME $realpath_root$fastcgi_script_name;
fastcgi_param DOCUMENT_ROOT $realpath_root;
# Prevents URIs that include the front controller. This will 404:
# http://example.com/index.php/some-path
# Remove the internal directive to allow URIs like this
internal;
}
# return 404 for all other php files not matching the front controller
# this prevents access to other php files you don't want to be accessible.
location ~ \.php$ {
return 404;
}
error_log /var/log/nginx/izbiz_error.log;
access_log /var/log/nginx/izbiz_access.log;
location = /.well-known/acme-challenge/acKDc06LS_9Lo3bgLlqVPR6tQEgrfKNZmjA8XtvlHr0{default_type text/plain;return 200 acKDc06LS_9Lo3bgLlqVPR6tQEgrfKNZmjA8XtvlHr0.fXVfyF0QPP8Pj-GYpMwkqH9WML-Vyb8zFIby6rwIwOA;} # managed by Certbot
}
2024-11-20 14:54:17,744:DEBUG:acme.client:JWS payload:
b'{}'
2024-11-20 14:54:17,747:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912137/8mvIjQ:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjA2NjI2OTMzNyIsICJub25jZSI6ICJuSEF1TXZveFQwQ0I2VlVhMnc0aGxFVXAySF8tQ3lkeHJMUlBpNXBmRjRhdmR6cXVZU1EiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NoYWxsLXYzLzQzMjkzNzkxMjEzNy84bXZJalEifQ",
"signature": "X2Ck7PEPis1p_h4G6hyrsqQzD4dMtINmRl3dyOpaCOmHRxpYhMBAK6-2srr5r6H8SBoAcyw_xT00LHUc7lsEoeosdbLcKVG-yBDbhShpGgVPk1nkqOTLdQj6FBCWsXGQLOzUVZgBEjO26kSFI9DfbUaRh2IiJHR4psDyjc235gB3B8uHghHTsi2I8yCUKQ5qF3EjsovIpwIjhpG5ELqXnEnmB12FcU-zr0zNnWocGhMIpUPekxGi7ovopCJcG--AtIbmAjJcg9JIX6QGLNFNCtxNdQT_paV8G2MvHGGJQN_stlp24E5BFGo1Srttp7gDuGwYW8hiP7kTGyzzrsDtJQ",
"payload": "e30"
}
2024-11-20 14:54:17,906:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/432937912137/8mvIjQ HTTP/1.1" 200 187
2024-11-20 14:54:17,907:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Wed, 20 Nov 2024 14:54:17 GMT
Content-Type: application/json
Content-Length: 187
Connection: keep-alive
Boulder-Requester: 2066269337
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-v02.api.letsencrypt.org/acme/authz-v3/432937912137>;rel="up"
Location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912137/8mvIjQ
Replay-Nonce: q3AS6Q6nvclXUC_6-HePdpOYXYzzXtFDLFwUJrLhWUmgz_DL8p8
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"type": "http-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912137/8mvIjQ",
"status": "pending",
"token": "acKDc06LS_9Lo3bgLlqVPR6tQEgrfKNZmjA8XtvlHr0"
}
2024-11-20 14:54:17,907:DEBUG:acme.client:Storing nonce: q3AS6Q6nvclXUC_6-HePdpOYXYzzXtFDLFwUJrLhWUmgz_DL8p8
2024-11-20 14:54:17,908:DEBUG:acme.client:JWS payload:
b'{}'
2024-11-20 14:54:17,911:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912147/9gXoZg:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjA2NjI2OTMzNyIsICJub25jZSI6ICJxM0FTNlE2bnZjbFhVQ182LUhlUGRwT1lYWXp6WHRGRExGd1VKckxoV1VtZ3pfREw4cDgiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NoYWxsLXYzLzQzMjkzNzkxMjE0Ny85Z1hvWmcifQ",
"signature": "FOZBbIyXbVy9L4OqXCIO_rvsoBlZ7ZOCzkb6VMOElnzVleIxklGI15p0peL-f9TGzxi6lvEUI9PviZG8gOr-gd_XSqPFx-4p6HLSs_sN4u7pJkAj_crG2hCLM0c-mkhoWiMppAs1Tfy9GBKG43diIayo219thgI35S8l7_rn8uanTLUP8LZe9iHqmsuSykjeo-mG-HDyrnyF4H6R5GzkOVesDDa-wAqbuKD29Z7SnsTuPuwyGApnMO2WMRTxxNnRaLQGZhPENXq_iaHP3heaxh8CJEVObN8o3azRj7VyAch0RijphsS83NkLrLGChxPAP37yXZl7DvZPu1lloGiSHA",
"payload": "e30"
}
2024-11-20 14:54:18,069:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/432937912147/9gXoZg HTTP/1.1" 200 187
2024-11-20 14:54:18,070:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Wed, 20 Nov 2024 14:54:17 GMT
Content-Type: application/json
Content-Length: 187
Connection: keep-alive
Boulder-Requester: 2066269337
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-v02.api.letsencrypt.org/acme/authz-v3/432937912147>;rel="up"
Location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912147/9gXoZg
Replay-Nonce: nHAuMvoxi_Sm2zOjOtvo50TQL9stDnPrIuEIpuNQ9SeLpnEaYss
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"type": "http-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912147/9gXoZg",
"status": "pending",
"token": "8YLW9cy4x1BRbkOEM8ocSKzTvXFhHnlSd6RIaQqj8pc"
}
2024-11-20 14:54:18,070:DEBUG:acme.client:Storing nonce: nHAuMvoxi_Sm2zOjOtvo50TQL9stDnPrIuEIpuNQ9SeLpnEaYss
2024-11-20 14:54:18,071:DEBUG:acme.client:JWS payload:
b'{}'
2024-11-20 14:54:18,073:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912157/V63w4g:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjA2NjI2OTMzNyIsICJub25jZSI6ICJuSEF1TXZveGlfU20yek9qT3R2bzUwVFFMOXN0RG5Qckl1RUlwdU5ROVNlTHBuRWFZc3MiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NoYWxsLXYzLzQzMjkzNzkxMjE1Ny9WNjN3NGcifQ",
"signature": "ZPQScgrLhIAOcN-yFdDXj239wZ9h2te9h5Abo5YvGfQ6LkKGjY31jYYjmJuIOsmFMFsf3W19RGh_Bf0EHMwuxpXqybjbMsPqGpbDdpxyQ1wE-7ljbnBb1Ar7cWrKL2sxaBoG0AxI0HNcxwz8tRxB0Sov4FtcErr-4h4xESaO0oKCNVP_VkhchJVjRTFst6QdXFzuw0v7bfoOByptEmJ3REN-DhrVFFDj1RX5kTzWLGUHlYZZheOEQDIX25ettwuuFQfUzbA47O2zgM6W_VcCCt3paPpm14SmxL9vB6FQcDESYkeloTdwXfgjWz6meLnV7RUEpvHyHiFf0zm_c9M4sQ",
"payload": "e30"
}
2024-11-20 14:54:18,228:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/chall-v3/432937912157/V63w4g HTTP/1.1" 200 187
2024-11-20 14:54:18,229:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Wed, 20 Nov 2024 14:54:18 GMT
Content-Type: application/json
Content-Length: 187
Connection: keep-alive
Boulder-Requester: 2066269337
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index", <https://acme-v02.api.letsencrypt.org/acme/authz-v3/432937912157>;rel="up"
Location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912157/V63w4g
Replay-Nonce: nHAuMvoxnzhUAVqMtV8wJffkSh4RLdkjZpezMNyoSxSLlxXs0PQ
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"type": "http-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912157/V63w4g",
"status": "pending",
"token": "jN0D__N1Gf55XsfD-h7SWV3mwHRxRlXV6nlD3KMLPKE"
}
2024-11-20 14:54:18,230:DEBUG:acme.client:Storing nonce: nHAuMvoxnzhUAVqMtV8wJffkSh4RLdkjZpezMNyoSxSLlxXs0PQ
2024-11-20 14:54:18,230:INFO:certbot._internal.auth_handler:Waiting for verification...
2024-11-20 14:54:19,231:DEBUG:acme.client:JWS payload:
b''
2024-11-20 14:54:19,234:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/432937912137:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjA2NjI2OTMzNyIsICJub25jZSI6ICJuSEF1TXZveG56aFVBVnFNdFY4d0pmZmtTaDRSTGRralpwZXpNTnlvU3hTTGx4WHMwUFEiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzQzMjkzNzkxMjEzNyJ9",
"signature": "boLxnoMx93PTBYgY2RUnmLo6aMq10ginWEfygbjbLak3HrWnCWBodi53pO4LFI2ftYnV81V1iHH2WcHkLvzAjXnnqb4rGFu9FxZPETZ4ELHg6TpDKMu0EeA-47-No7Nd-9p2sUJbZoao_ZNOUcnSkIg0FiSs9lGmD8wodElrIAKxZRFSp_iFAZPjBmsZoRJxZmxUG-1TBm3Lihuh4SSv95o-FroUnzH5aIMLgkxrsq-QQfpA6Mkzh-6CnWf7BuQYEivQtB_oW8i8rzupV88eMKg-juSGsQU5tKdNL2FK3U9eredbwsvDz1UaH89ZT8fWi1hhh7t8UdiwZ-7Hg4uR4Q",
"payload": ""
}
2024-11-20 14:54:19,388:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/432937912137 HTTP/1.1" 200 1066
2024-11-20 14:54:19,389:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Wed, 20 Nov 2024 14:54:19 GMT
Content-Type: application/json
Content-Length: 1066
Connection: keep-alive
Boulder-Requester: 2066269337
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: q3AS6Q6noaYdtMcVrwjeyGXhOL7nX2DG8rNy_lWGrI-EXF4NwIM
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "api.iz-biz.com"
},
"status": "invalid",
"expires": "2024-11-27T14:54:16Z",
"challenges": [
{
"type": "http-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912137/8mvIjQ",
"status": "invalid",
"validated": "2024-11-20T14:54:17Z",
"error": {
"type": "urn:ietf:params:acme:error:unauthorized",
"detail": "2a0f:f01:207:22::: Invalid response from http://api.iz-biz.com/.well-known/acme-challenge/acKDc06LS_9Lo3bgLlqVPR6tQEgrfKNZmjA8XtvlHr0: 404",
"status": 403
},
"token": "acKDc06LS_9Lo3bgLlqVPR6tQEgrfKNZmjA8XtvlHr0",
"validationRecord": [
{
"url": "http://api.iz-biz.com/.well-known/acme-challenge/acKDc06LS_9Lo3bgLlqVPR6tQEgrfKNZmjA8XtvlHr0",
"hostname": "api.iz-biz.com",
"port": "80",
"addressesResolved": [
"193.180.208.33",
"2a0f:f01:207:22::"
],
"addressUsed": "2a0f:f01:207:22::"
}
]
}
]
}
2024-11-20 14:54:19,389:DEBUG:acme.client:Storing nonce: q3AS6Q6noaYdtMcVrwjeyGXhOL7nX2DG8rNy_lWGrI-EXF4NwIM
2024-11-20 14:54:19,390:DEBUG:acme.client:JWS payload:
b''
2024-11-20 14:54:19,393:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/432937912147:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjA2NjI2OTMzNyIsICJub25jZSI6ICJxM0FTNlE2bm9hWWR0TWNWcndqZXlHWGhPTDduWDJERzhyTnlfbFdHckktRVhGNE53SU0iLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzQzMjkzNzkxMjE0NyJ9",
"signature": "a-1Nq_DxFbJoKgtxVTdWor5NOd_KmpmUYgymvl53w-t32V4UwsUZhYrbLYzNwx7pmK9CBepJ9Okan6f_OmoEiVWE8RbIi6HpyH7yEKsUa2Vpwmr2YYzFmvNzOTtXz3cUqggjqBF_KgKhTs2E3hvdne5wKsLoxwFmLEK6uvq_ylcMSTP6a0sQIrssqr8UG5yCG044QV3g0GYscTkcjv2bJp1ctyHGWt5KxqTshBgEaHL1EOXNWPToJTBdQ0nSXR-U8KdhYrqCL-67QCSb6Sun8QYvxsQsYf7fdIPy3gmWNMugzAUbUqO2WMBwmlNLB4ojMR9pYX-DXcmuUTw2eIeW3Q",
"payload": ""
}
2024-11-20 14:54:19,549:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/432937912147 HTTP/1.1" 200 1050
2024-11-20 14:54:19,550:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Wed, 20 Nov 2024 14:54:19 GMT
Content-Type: application/json
Content-Length: 1050
Connection: keep-alive
Boulder-Requester: 2066269337
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: q3AS6Q6nE8Lr0kOPcIb4aku7nnh8LQQHZP0DydO0qbKC9URjKi4
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "iz-biz.com"
},
"status": "invalid",
"expires": "2024-11-27T14:54:16Z",
"challenges": [
{
"type": "http-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912147/9gXoZg",
"status": "invalid",
"validated": "2024-11-20T14:54:17Z",
"error": {
"type": "urn:ietf:params:acme:error:unauthorized",
"detail": "2a0f:f01:207:22::: Invalid response from http://iz-biz.com/.well-known/acme-challenge/8YLW9cy4x1BRbkOEM8ocSKzTvXFhHnlSd6RIaQqj8pc: 404",
"status": 403
},
"token": "8YLW9cy4x1BRbkOEM8ocSKzTvXFhHnlSd6RIaQqj8pc",
"validationRecord": [
{
"url": "http://iz-biz.com/.well-known/acme-challenge/8YLW9cy4x1BRbkOEM8ocSKzTvXFhHnlSd6RIaQqj8pc",
"hostname": "iz-biz.com",
"port": "80",
"addressesResolved": [
"193.180.208.33",
"2a0f:f01:207:22::"
],
"addressUsed": "2a0f:f01:207:22::"
}
]
}
]
}
2024-11-20 14:54:19,550:DEBUG:acme.client:Storing nonce: q3AS6Q6nE8Lr0kOPcIb4aku7nnh8LQQHZP0DydO0qbKC9URjKi4
2024-11-20 14:54:19,551:DEBUG:acme.client:JWS payload:
b''
2024-11-20 14:54:19,553:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/432937912157:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjA2NjI2OTMzNyIsICJub25jZSI6ICJxM0FTNlE2bkU4THIwa09QY0liNGFrdTdubmg4TFFRSFpQMER5ZE8wcWJLQzlVUmpLaTQiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzQzMjkzNzkxMjE1NyJ9",
"signature": "I-_wLd-72aBeXsOC3Ff-i4kkUlc1Qh1t7xCeooRHyLnywFWOPcbXj5uHnZDhaBlFseFIxqbnboMs4M5BNIvWpPc1r1K5PcPeKjW-DT-gGs1VBjyS887Q4alblywMlmGxpPO5HGF61s4znfdoBGgxCTLK5Q7ibHHgjkpGwZHjoXv0vXSDcZEVtVeCC_5Xlwr4-3zNGF8XD8m8nGsnbq3EBXSLDEBbZ0Vsg09BpRXXWzpCZAjKAsWzxkuE0F1Iimj3oPg_nwKPTKwoO1qOdqmgRS6Y6UJzdoNTLprtF1fJf38OkQoj6n0hdea9nhCq0A_xLsekr385NvorzD1rxqC9rg",
"payload": ""
}
2024-11-20 14:54:19,707:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/authz-v3/432937912157 HTTP/1.1" 200 1066
2024-11-20 14:54:19,708:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Wed, 20 Nov 2024 14:54:19 GMT
Content-Type: application/json
Content-Length: 1066
Connection: keep-alive
Boulder-Requester: 2066269337
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: q3AS6Q6nM2ZO1jak-Jjqyrv9OzvyP5MIbnj8YPFFFyayQdG06h8
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"identifier": {
"type": "dns",
"value": "www.iz-biz.com"
},
"status": "invalid",
"expires": "2024-11-27T14:54:16Z",
"challenges": [
{
"type": "http-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/432937912157/V63w4g",
"status": "invalid",
"validated": "2024-11-20T14:54:18Z",
"error": {
"type": "urn:ietf:params:acme:error:unauthorized",
"detail": "2a0f:f01:207:22::: Invalid response from http://www.iz-biz.com/.well-known/acme-challenge/jN0D__N1Gf55XsfD-h7SWV3mwHRxRlXV6nlD3KMLPKE: 404",
"status": 403
},
"token": "jN0D__N1Gf55XsfD-h7SWV3mwHRxRlXV6nlD3KMLPKE",
"validationRecord": [
{
"url": "http://www.iz-biz.com/.well-known/acme-challenge/jN0D__N1Gf55XsfD-h7SWV3mwHRxRlXV6nlD3KMLPKE",
"hostname": "www.iz-biz.com",
"port": "80",
"addressesResolved": [
"193.180.208.33",
"2a0f:f01:207:22::"
],
"addressUsed": "2a0f:f01:207:22::"
}
]
}
]
}
2024-11-20 14:54:19,708:DEBUG:acme.client:Storing nonce: q3AS6Q6nM2ZO1jak-Jjqyrv9OzvyP5MIbnj8YPFFFyayQdG06h8
2024-11-20 14:54:19,709:INFO:certbot._internal.auth_handler:Challenge failed for domain api.iz-biz.com
2024-11-20 14:54:19,709:INFO:certbot._internal.auth_handler:Challenge failed for domain iz-biz.com
2024-11-20 14:54:19,710:INFO:certbot._internal.auth_handler:Challenge failed for domain www.iz-biz.com
2024-11-20 14:54:19,710:INFO:certbot._internal.auth_handler:http-01 challenge for api.iz-biz.com
2024-11-20 14:54:19,710:INFO:certbot._internal.auth_handler:http-01 challenge for iz-biz.com
2024-11-20 14:54:19,710:INFO:certbot._internal.auth_handler:http-01 challenge for www.iz-biz.com
2024-11-20 14:54:19,710:DEBUG:certbot._internal.display.obj:Notifying user:
Certbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:
Domain: api.iz-biz.com
Type: unauthorized
Detail: 2a0f:f01:207:22::: Invalid response from http://api.iz-biz.com/.well-known/acme-challenge/acKDc06LS_9Lo3bgLlqVPR6tQEgrfKNZmjA8XtvlHr0: 404
Domain: iz-biz.com
Type: unauthorized
Detail: 2a0f:f01:207:22::: Invalid response from http://iz-biz.com/.well-known/acme-challenge/8YLW9cy4x1BRbkOEM8ocSKzTvXFhHnlSd6RIaQqj8pc: 404
Domain: www.iz-biz.com
Type: unauthorized
Detail: 2a0f:f01:207:22::: Invalid response from http://www.iz-biz.com/.well-known/acme-challenge/jN0D__N1Gf55XsfD-h7SWV3mwHRxRlXV6nlD3KMLPKE: 404
Hint: The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet.
2024-11-20 14:54:19,712:DEBUG:certbot._internal.error_handler:Encountered exception:
Traceback (most recent call last):
File "/snap/certbot/4193/lib/python3.12/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations
self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort)
File "/snap/certbot/4193/lib/python3.12/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations
raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.
2024-11-20 14:54:19,713:DEBUG:certbot._internal.error_handler:Calling registered functions
2024-11-20 14:54:19,713:INFO:certbot._internal.auth_handler:Cleaning up challenges
2024-11-20 14:54:20,901:DEBUG:certbot._internal.log:Exiting abnormally:
Traceback (most recent call last):
File "/snap/certbot/4193/bin/certbot", line 8, in <module>
sys.exit(main())
^^^^^^
File "/snap/certbot/4193/lib/python3.12/site-packages/certbot/main.py", line 19, in main
return internal_main.main(cli_args)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/snap/certbot/4193/lib/python3.12/site-packages/certbot/_internal/main.py", line 1876, in main
return config.func(config, plugins)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/snap/certbot/4193/lib/python3.12/site-packages/certbot/_internal/main.py", line 1428, in run
new_lineage = _get_and_save_cert(le_client, config, domains,
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/snap/certbot/4193/lib/python3.12/site-packages/certbot/_internal/main.py", line 142, in _get_and_save_cert
lineage = le_client.obtain_and_enroll_certificate(domains, certname)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/snap/certbot/4193/lib/python3.12/site-packages/certbot/_internal/client.py", line 517, in obtain_and_enroll_certificate
cert, chain, key, _ = self.obtain_certificate(domains)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/snap/certbot/4193/lib/python3.12/site-packages/certbot/_internal/client.py", line 428, in obtain_certificate
orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/snap/certbot/4193/lib/python3.12/site-packages/certbot/_internal/client.py", line 496, in _get_order_and_authorizations
authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/snap/certbot/4193/lib/python3.12/site-packages/certbot/_internal/auth_handler.py", line 108, in handle_authorizations
self._poll_authorizations(authzrs, max_retries, max_time_mins, best_effort)
File "/snap/certbot/4193/lib/python3.12/site-packages/certbot/_internal/auth_handler.py", line 212, in _poll_authorizations
raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.
2024-11-20 14:54:20,906:ERROR:certbot._internal.log:Some challenges have failed.