Open mcnesium opened 2 months ago
Please note that we can't give support for anything you do directly on the NextBox via ssh
.
You can check the certificate status in the NextBox App under HTTPS / TLS
.
Also your browser should warn you if you tried to access your NextBox over HTTPS with an invalid certificate.
Under the hood NextBox does not use the service and instead renews certificates manually. As you found out correctly the certbot config directory used is also not default, so when you look up certificates in the default config directory it obviously can't find any.
After running my Nextbox since it was first released, I suddenly get E-Mails from Letsencrypt that my certificate is expiring. Checking the system, everything seems fine:
However, it says
/usr/bin/certbot -q renew
in the service. So what about the certificate?Looks like it does not find it and thus, can not renew ist, because it is not in the default place.
certbot
is called with a specific config dir in this python script, so shouldn't that also do it in the service?How did that work in the past anyway? My certificate was renewed last time on April 28th. Was there some update that changed this, recently?