Hardware: VPS bought online
YunoHost version: yunohost-stretch-3.6.4.6-amd64-stable
I have access to my server : Through SSH | through the webadmin
Are you in a special context or did you perform some particular tweaking on your YunoHost instance ? : no
Description of my issue
My peertube instance does not have ssl certificate. When I attempt to install one, it fails.
Here is the logs:
2019-08-20 01:03:24,271: DEBUG - Nginx configuration file for ACME challenge already exists for domain, skipping.
2019-08-20 01:03:24,271: DEBUG - Making sure tmp folders exists…
2019-08-20 01:03:24,768: DEBUG - Could not get public IPv6 : Invalid url https://ip6.yunohost.org (does this site exists?)
2019-08-20 01:03:24,769: DEBUG - Prepare key and certificate signing request (CSR) for peertube.crimethink.top…
2019-08-20 01:03:25,445: DEBUG - Saving to /tmp/acme-challenge-private/peertube.crimethink.top.csr.
2019-08-20 01:03:25,446: DEBUG - Now using ACME Tiny to sign the certificate…
2019-08-20 01:03:25,446: INFO - Parsing account key…
2019-08-20 01:03:25,464: INFO - Parsing CSR…
2019-08-20 01:03:25,481: INFO - Found domains: peertube.crimethink.top
2019-08-20 01:03:25,482: INFO - Getting directory…
2019-08-20 01:03:26,302: INFO - Directory found!
2019-08-20 01:03:26,302: INFO - Registering account…
2019-08-20 01:03:27,699: INFO - Already registered!
2019-08-20 01:03:27,701: INFO - Creating new order…
2019-08-20 01:03:28,910: INFO - Order created!
2019-08-20 01:03:29,499: INFO - Verifying peertube.crimethink.top…
2019-08-20 01:03:33,856: ERROR - Challenge did not pass for peertube.crimethink.top: {u’status’: u’invalid’, u’challenges’: [{u’status’: u’invalid’, u’url’: u’https://acme-v02.api.letsencrypt.org/acme/challenge/0OtPrw8XgGLHCTeLmNNtt1-FUszIYMV4xFytxPetNGc/19764655330’, u’token’: u’OTZRlKcpmNqVlXCM08Rhlz8K3PuqPZhd4SKaTje9_lo’, u’type’: u’dns-01’}, {u’status’: u’invalid’, u’url’: u’https://acme-v02.api.letsencrypt.org/acme/challenge/0OtPrw8XgGLHCTeLmNNtt1-FUszIYMV4xFytxPetNGc/19764655332’, u’token’: u’rJmkaEyT9SnU0t6jR4LSXc3Arr2PCLl6ZwL6PnZ7vXE’, u’type’: u’tls-alpn-01’}, {u’status’: u’invalid’, u’validationRecord’: [{u’url’: u’http://peertube.crimethink.top/.well-known/acme-challenge/adUJ8ZjzTPPeBCS2-C3UAsYLOpC3KPb8K5HWDNbJN5I’, u’hostname’: u’peertube.crimethink.top’, u’addressUsed’: u’158.69.21.155’, u’port’: u’80’, u’addressesResolved’: [u’158.69.21.155’]}], u’url’: u’https://acme-v02.api.letsencrypt.org/acme/challenge/0OtPrw8XgGLHCTeLmNNtt1-FUszIYMV4xFytxPetNGc/19764655335’, u’token’: u’adUJ8ZjzTPPeBCS2-C3UAsYLOpC3KPb8K5HWDNbJN5I’, u’error’: {u’status’: 403, u’type’: u’urn:ietf:params:acme:error:caa’, u’detail’: u’CAA record for peertube.crimethink.top prevents issuance’}, u’type’: u’http-01’}], u’identifier’: {u’type’: u’dns’, u’value’: u’peertube.crimethink.top’}, u’expires’: u’2019-08-27T01:03:28Z’}
2019-08-20 01:03:34,363: WARNING - Debug information:
- domain ip from DNS 158.69.21.155
- domain ip from local DNS 158.69.21.155
- public ip of the server 158.69.21.155
2019-08-20 01:03:34,870: WARNING - Debug information:
- domain ip from DNS 158.69.21.155
- domain ip from local DNS 158.69.21.155
- public ip of the server 158.69.21.155
2019-08-20 01:03:34,880: ERROR - Certificate installation for peertube.crimethink.top failed !
Exception: Signing the new certificate failed
Because the peertube subdomain lacks ssl certificate, it is insecure site, chromium won’t even let me log in to my peertube.
Any advice for how to resolve this issue?