What type of hardware are you using: Old laptop or computer What YunoHost version are you running: 12.0.14 What app is this about: Cryptpad
Describe your issue
Hello,
I’m new to yunohost and everything as been working pretty well so far except for Cryptpad where I struggle.
I have difficulties with my certificate (see log) but I managed to do a self-signed certificate :
sudo yunohost domain cert install cryptpad.sub.mydomain.tl --self-signed --force
When i try to get to any subapp from Cryptpad, i got an error message in firefox that I can’t bypass (at least not easily for my users…)
Did Not Connect: Potential Security Issue
Firefox detected a potential security threat and did not continue to sandbox.cryptpad.home.teebo.eu because this website requires a secure connection.
What can you do about it?
sandbox.cryptpad.home.teebo.eu has a security policy called HTTP Strict Transport Security (HSTS), which means that Firefox can only connect to it securely. You can’t add an exception to visit this site.
The issue is most likely with the website, and there is nothing you can do to resolve it.
If you are on a corporate network or using antivirus software, you can reach out to the support teams for assistance. You can also notify the website’s administrator about the problem.
probably not. the tricky part is: depends on registrar what’s right. in my case:
i have a domain, let’s say mydomain.de
for cryptpad loginpage i have a cname, pad.mydomain.de
for sandbox domain i have to do a cname sandbox.pad to pad.mydomain.de
Here is my struggle with that and solution as describe by @rodinux
Info: Now attempting install of certificate for domain cryptpad.home.teebo.eu!
Success! Configuration updated for 'dnsmasq'
Info: Parsing account key...
Info: Parsing CSR...
Info: Found domains: cryptpad.home.teebo.eu, sandbox.cryptpad.home.teebo.eu
Info: Getting directory...
Info: Directory found!
Info: Registering account...
Info: Already registered!
Info: Creating new order...
Info: Order created!
Info: Verifying cryptpad.home.teebo.eu...
Info: cryptpad.home.teebo.eu verified!
Info: Verifying sandbox.cryptpad.home.teebo.eu...
Error: Wrote file to /var/www/.well-known/acme-challenge-public/9weq0jE-895QErhKH4wtFbaaU7-1Qs1WQzBw22_rKYI, but couldn't download http://sandbox.cryptpad.home.teebo.eu/.well-known/acme-challenge/9weq0jE-895QErhKH4wtFbaaU7-1Qs1WQzBw22_rKYI: Error:
Url: http://sandbox.cryptpad.home.teebo.eu/.well-known/acme-challenge/9weq0jE-895QErhKH4wtFbaaU7-1Qs1WQzBw22_rKYI
Data: None
Response Code: None
Response: <urlopen error [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:992)>
Error: Certificate installation for cryptpad.home.teebo.eu failed !
Exception: Could not sign the new certificate
Info: The operation 'Install a Let's Encrypt certificate on 'cryptpad.home.teebo.eu' domain' could not be completed. Please share the full log of this operation using the command 'yunohost log share 20250428-212056-letsencrypt_cert_install-cryptpad.home.teebo.eu' to get help
Error: Let's Encrypt certificate install failed for cryptpad.home.teebo.eu
if i try via ssh without the no-check I’ve got a strange message :
Error: The DNS records for domain 'cryptpad.home.teebo.eu' are different to this server's IP. Please check the 'DNS records' (basic) category in the diagnosis for more info. If you recently modified your A record, please wait for it to propagate (some DNS propagation checkers are available online). (If you know what you are doing, use '--no-checks' to turn off these checks.)
but i can still reach the domain, but firefox is even preventing the welcome page with:
Did Not Connect: Potential Security Issue
Firefox detected a potential security threat and did not continue to cryptpad.home.teebo.eu because this website requires a secure connection.
