Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

sub-domain DNS error (Unable to rotate DNS challenges) #10

Closed
ScubaDrew opened this issue Mar 1, 2023 · 5 comments · Fixed by #11
Closed

sub-domain DNS error (Unable to rotate DNS challenges) #10

ScubaDrew opened this issue Mar 1, 2023 · 5 comments · Fixed by #11
Assignees
@aaomidi
Labels
bug Something isn't working

Comments

@ScubaDrew
Copy link

I can issue a cert for my root domain with out any issue, but sub-domains result in an error. Thanks for any guidance!

➜  ~ sudo certbot certonly -d xxx.com,gitlab.xxx.com --server "https://dv.acme-v02.api.pki.goog/directory" --authenticator 'dns-google-domains' --dns-google-domains-credentials '/var/lib/letsencrypt/dns_google_domains_credentials.ini'
Saving debug log to /var/log/letsencrypt/letsencrypt.log

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
You have an existing certificate that contains a portion of the domains you
requested (ref: /etc/letsencrypt/renewal/xxx.com.conf)

It contains these names: xxx.com

You requested these names for the new certificate: xxx.com,
gitlab.xxx.com.

Do you want to expand and replace this existing certificate with the new
certificate?
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
(E)xpand/(C)ancel: E
Renewing an existing certificate for xxx.com and gitlab.xxx.com
Encountered exception during recovery: certbot.errors.PluginError: Unable to rotate DNS challenges: 400 Client Error: Bad Request for url: https://acmedns.googleapis.com/v1/acmeChallengeSets/gitlab.xxx.com:rotateChallenges
Unable to rotate DNS challenges: 400 Client Error: Bad Request for url: https://acmedns.googleapis.com/v1/acmeChallengeSets/gitlab.xxx.com:rotateChallenges
@aaomidi aaomidi self-assigned this Mar 2, 2023
@aaomidi aaomidi added the bug Something isn't working label Mar 2, 2023
@aaomidi
Copy link
Owner

aaomidi commented Mar 2, 2023

Thanks for reporting this!

@aaomidi aaomidi mentioned this issue Mar 2, 2023
Merged
@aaomidi
Copy link
Owner

aaomidi commented Mar 2, 2023

Ah one of those classic mistakes. I wrongly assumed that the backend will handle subdomains with 🪄 . PR #11 should fix this problem.

@ScubaDrew
Copy link
Author

Thanks @aaomidi 🪄 fix! Appreciate it.

@ttocsr
Copy link

ttocsr commented Mar 2, 2023

Thanks for making this and fixing this. I was trying to get this working in nginx proxy manager and came to open an issue.
It looks like your release workflow failed so 0.1.3 didn't become a release.

@aaomidi
Copy link
Owner

aaomidi commented Mar 2, 2023
edited
Loading

@ttocsr Thanks! Forgot that I don't have the pypi automation setup yet. Creating a bug to remember it too (#13). Here's the updated package: https://pypi.org/project/certbot-dns-google-domains/

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@aaomidi aaomidi

Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Handle subdomains correctly aaomidi/certbot-dns-google-domains
3 participants
@aaomidi @ttocsr @ScubaDrew