Gnuragist.es

Support Gnu/Linux

Outils pour utilisateurs

Outils du site


notes:certificate-renewal-fail

issuing a certificate via yunohost's webinterface, or commandline (ssh)

yunohost domain cert-renew www.mydomain.be

gives this error

Error: Domain www.mydomain.be does not seem to be accessible through HTTP. Please check the 'Web' category in the diagnosis for more info. (If you know what you are doing, use '–no-checks' to turn off those checks.)

issue is i think the nginx redirection settings of custom webapp apps (http: requests get forwarded to https: )

eg. in

/etc/nginx/conf.d/www.mydomain.be.d/wordpress.conf

i commented following ‘rewrite’ https settings (you can use octothorp '#' character on the beginning of the line)

#if ($scheme = http) {
#rewrite ^ https://$server_name$request_uri? permanent;
#}

then restart nginx

systemctl reload nginx

and have a quick test (from another computer)

curl http://www.mydomain.be
200 ok
yunohost domain cert-renew www.mydomain.be --no-check

( or 'yunohost domain cert-install mydomain.be –no-checks' if there was a selfsigned cert and you want to get an letsencrypt issued one)

after this, reset the changes in the nginx configuration & reload nginx…

mais tuto bene a la fin toutlemonde content :

test with curl (on laptop)

ptr@eternit:~$ curl http://www.mydomain.be
<html>
<head><title>301 Moved Permanently</title></head>
<body bgcolor="white">
<center><h1>301 Moved Permanently</h1></center>
<hr><center>nginx</center>
</body>
</html>

ptr@eternit:~$ curl https://www.mydomain.be
<!doctype html>
...
notes/certificate-renewal-fail.txt · Dernière modification : 2021/01/20 18:26 de ptr