Having trouble with SSL cert for Peertube app

Hardware: VPS bought online

YunoHost version: yunohost-stretch-

I have access to my server : Through SSH | through the webadmin

Are you in a special context or did you perform some particular tweaking on your YunoHost instance ? : no

Description of my issue

My peertube instance does not have ssl certificate. When I attempt to install one, it fails.

Here is the logs:
2019-08-20 01:03:24,271: DEBUG - Nginx configuration file for ACME challenge already exists for domain, skipping.
2019-08-20 01:03:24,271: DEBUG - Making sure tmp folders exists…
2019-08-20 01:03:24,768: DEBUG - Could not get public IPv6 : Invalid url https://ip6.yunohost.org (does this site exists?)
2019-08-20 01:03:24,769: DEBUG - Prepare key and certificate signing request (CSR) for peertube.crimethink.top…
2019-08-20 01:03:25,445: DEBUG - Saving to /tmp/acme-challenge-private/peertube.crimethink.top.csr.
2019-08-20 01:03:25,446: DEBUG - Now using ACME Tiny to sign the certificate…
2019-08-20 01:03:25,446: INFO - Parsing account key…
2019-08-20 01:03:25,464: INFO - Parsing CSR…
2019-08-20 01:03:25,481: INFO - Found domains: peertube.crimethink.top
2019-08-20 01:03:25,482: INFO - Getting directory…
2019-08-20 01:03:26,302: INFO - Directory found!
2019-08-20 01:03:26,302: INFO - Registering account…
2019-08-20 01:03:27,699: INFO - Already registered!
2019-08-20 01:03:27,701: INFO - Creating new order…
2019-08-20 01:03:28,910: INFO - Order created!
2019-08-20 01:03:29,499: INFO - Verifying peertube.crimethink.top…
2019-08-20 01:03:33,856: ERROR - Challenge did not pass for peertube.crimethink.top: {u’status’: u’invalid’, u’challenges’: [{u’status’: u’invalid’, u’url’: u’https://acme-v02.api.letsencrypt.org/acme/challenge/0OtPrw8XgGLHCTeLmNNtt1-FUszIYMV4xFytxPetNGc/19764655330’, u’token’: u’OTZRlKcpmNqVlXCM08Rhlz8K3PuqPZhd4SKaTje9_lo’, u’type’: u’dns-01’}, {u’status’: u’invalid’, u’url’: u’https://acme-v02.api.letsencrypt.org/acme/challenge/0OtPrw8XgGLHCTeLmNNtt1-FUszIYMV4xFytxPetNGc/19764655332’, u’token’: u’rJmkaEyT9SnU0t6jR4LSXc3Arr2PCLl6ZwL6PnZ7vXE’, u’type’: u’tls-alpn-01’}, {u’status’: u’invalid’, u’validationRecord’: [{u’url’: u’http://peertube.crimethink.top/.well-known/acme-challenge/adUJ8ZjzTPPeBCS2-C3UAsYLOpC3KPb8K5HWDNbJN5I’, u’hostname’: u’peertube.crimethink.top’, u’addressUsed’: u’’, u’port’: u’80’, u’addressesResolved’: [u’’]}], u’url’: u’https://acme-v02.api.letsencrypt.org/acme/challenge/0OtPrw8XgGLHCTeLmNNtt1-FUszIYMV4xFytxPetNGc/19764655335’, u’token’: u’adUJ8ZjzTPPeBCS2-C3UAsYLOpC3KPb8K5HWDNbJN5I’, u’error’: {u’status’: 403, u’type’: u’urn:ietf:params:acme:error:caa’, u’detail’: u’CAA record for peertube.crimethink.top prevents issuance’}, u’type’: u’http-01’}], u’identifier’: {u’type’: u’dns’, u’value’: u’peertube.crimethink.top’}, u’expires’: u’2019-08-27T01:03:28Z’}
2019-08-20 01:03:34,363: WARNING - Debug information:

  • domain ip from DNS
  • domain ip from local DNS
  • public ip of the server

2019-08-20 01:03:34,870: WARNING - Debug information:

  • domain ip from DNS
  • domain ip from local DNS
  • public ip of the server

2019-08-20 01:03:34,880: ERROR - Certificate installation for peertube.crimethink.top failed !
Exception: Signing the new certificate failed

Because the peertube subdomain lacks ssl certificate, it is insecure site, chromium won’t even let me log in to my peertube.

Any advice for how to resolve this issue?

I figured it out, was not configured my DNS correctly

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.