[[webroot_map]]


#1

Please explain to me what the entries below of [[webroot_map]] in the file example.com.conf in the path /home/user/.config/letsencrypt/renewal/ below mean.

In my case, there is the same path for each domain, but that’s not true. The paths of the domains are different.

[[webroot_map]]
example.com = /var/www/virtual/user/html
blog.example.com = /var/www/virtual/user/html
photo.example.com = /var/www/virtual/user/html

It works and gives no problems. But I just want to know what that means.


#2

Hi @slart,

This refers to the location where Certbot will place files when challenged by the certificate authority in order to prove your control over each domain name. It’s possible that it works with the same directory rather than different directories because your web server might have a special rule mapping the challenge path /.well-known/acme-challenge to the same path for each domain, even though other web site content may be served from different locations.


#3

Yes, there is a directory /home/user/.well-known/ but it’s empty. I have noticed that it is rebuilt when creating or renewing a certificate. Apparently, files are temporarily stored and deleted there.

A /acme-challenge directory i have not found. There is a /home/user/.config/letsencrypt/accounts/acme-v01.api.letsencrypt.org with *.json files in a subfolder.


#4

Probably your Certbot client is creating and then deleting .acme-challenge for you each time, as you thought. And a configuration tool probably also created the mappings for you so that each domain’s /.well-known/acme-challenge gets rewritten from the same path—you might be able to find these if you look at your web server configuration.


#5

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.