White Labeling

[leandrosardi]

Related wtth https://github.com/leandrosardi/my.saas/issues/38.

Research

Research how to programatically add new subdomains with certificate.

• LetsEncrypt.
• GoDaddy / NameCheap API

Tasks

Stage 1: Sub-domains (e.g.: my-company.massprospecting.com)

• Add letsencrypt automation to the blackstack-nodes gem.
• Develop a godaddy-client for DNS management. --> https://github.com/MassProspecting/godaddy-client
• Company name to show in website.
• Add the sub-domain to TinyMCE.

Stage 2: White-Labeling

• User setup his/her domain manually / Hire a DFY service.
• Favicon.
• Logo.
• Company name.
• Postmark-API for adding domains for notifications.
• Add the new domain to TinyMCE.
• Footer links

[leandrosardi]

Research how to programatically add new subdomains with certificate.

If I re-run a certification before the expiration date, I get this error:

blackstack@s01:~/code/mass.slave$ sudo certbot certonly -d s01.massprospecting.com --noninteractive --standalone --agree-tos --register-unsafely-without-email
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator standalone, Installer None
Cert not yet due for renewal
Keeping the existing certificate

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Certificate not yet due for renewal; no action taken.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

If I add a second domain, I get this message:

blackstack@s01:~/code/mass.slave$ sudo certbot certonly -d s01.massprospecting.com -d mass.massprospecting.com --noninteractive --standalone --agree-tos --register-unsafely-without-email
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator standalone, Installer None
Missing command line flag or config entry for this setting:
You have an existing certificate that contains a portion of the domains you requested (ref: /etc/letsencrypt/renewal/s01.massprospecting.com.conf)

It contains these names: s01.massprospecting.com

You requested these names for the new certificate: s01.massprospecting.com, mass.massprospecting.com.

Do you want to expand and replace this existing certificate with the new certificate?

(You can set this with the --expand flag)

[leandrosardi]

Getting this other error: Challenge failed for domain mass.massprospecting.com.

This is happening because I didn't add the A record to the DNS yet, or because the A record has not been propagated yet.

blackstack@s01:~$ sudo certbot certonly -d s01.massprospecting.com -d mass.massprospecting.com --expand --noninteractive --standalone --agree-tos --register-unsafely-without-email
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator standalone, Installer None
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for mass.massprospecting.com
Waiting for verification...
Challenge failed for domain mass.massprospecting.com
http-01 challenge for mass.massprospecting.com
Cleaning up challenges
Some challenges have failed.

IMPORTANT NOTES:
 - The following errors were reported by the server:

   Domain: mass.massprospecting.com
   Type:   dns
   Detail: DNS problem: NXDOMAIN looking up A for
   mass.massprospecting.com - check that a DNS record exists for this
   domain; DNS problem: NXDOMAIN looking up AAAA for
   mass.massprospecting.com - check that a DNS record exists for this
   domain