Closed gmcintire closed 5 years ago
@zulandar can you take a look at this
Is there any way to get this looked at quickly? Our portal is essentially down right now unless I want to completely re-deploy it to generate a new certificate.
@gmcintire can you attempt to restart the docker containers docker-compose restart
? If your portal is currently down please contact sonar support so we can resolve this issue in real time.
It's not down, it's just presenting an expired cert because of this bug.
Fix is to run the following:
docker-compose run --rm \
--entrypoint "\
certbot certonly --webroot \
-w /var/www/certbot \
--force-renewal" certbot
and enter the domain name for the portal.
Then, run docker-compose exec app sv restart nginx
and auto renewals should be good to go. I also updated the install script to fix this issue.
@gmcintire please see above, we'll also be deploying an image to fix this
Thanks, it worked!
It looks like when nginx gets configured originally the non-ssl document root gets set to something different so the acme challenge fails. Manually running certbot renew in the container gives the following output: