Open beldred opened 1 year ago
Please upgrade to the latest code and try again first. Maybe it's already fixed. acme.sh --upgrade
If it's still not working, please provide the log with --debug 2
, otherwise, nobody can help you.
acme.sh --upgrade -b dev
Works after running the above to pull the dev changes.
EDIT: i already tried dev version
I had the same issue today, ran acme.sh --issue --dns dns_gd -d sub.mydomain.com
and the subdomain was used for api calls instead of mydomain.com
[Tue Jun 11 22:20:42 CEST 2024] Using CA: https://acme.zerossl.com/v2/DV90
[Tue Jun 11 22:20:42 CEST 2024] Single domain='sub.mydomain.com'
[Tue Jun 11 22:20:48 CEST 2024] Getting webroot for domain='sub.mydomain.com'
[Tue Jun 11 22:20:49 CEST 2024] Adding txt value: XLSUQAUV4l4vq9y7jl7MaSc_IzrbeKl8XHCbFlXmzYX for domain: _acme-challenge.sub.mydomain.com
[Tue Jun 11 22:20:50 CEST 2024] Adding record
[Tue Jun 11 22:20:52 CEST 2024] TXT record 'XLSUQAUV4l4vq9y7jl7MaSc_IzrbeKl8XHCbFlXmzYX' for '_acme-challenge.sub.mydomain.com', value wasn't set!
[Tue Jun 11 22:20:52 CEST 2024] Error add txt for domain:_acme-challenge.sub.mydomain.com
[Tue Jun 11 22:20:52 CEST 2024] Please add '--debug' or '--log' to check more details.
[Tue Jun 11 22:20:52 CEST 2024] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
Debug log section
[Tue Jun 11 22:24:38 CEST 2024] url='https://api.godaddy.com/v1/domains/sub.mydomain.com/records/TXT/_acme-challenge'
[Tue Jun 11 22:24:38 CEST 2024] timeout=
[Tue Jun 11 22:24:38 CEST 2024] Http already initialized.
[Tue Jun 11 22:24:38 CEST 2024] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.ujpabe -g '
[Tue Jun 11 22:24:39 CEST 2024] ret='0'
[Tue Jun 11 22:24:39 CEST 2024] response='{"code":"UNKNOWN_DOMAIN","message":"The given domain is not registered, or does not have a zone file"}'
I've also been having the same issue for the last few days. I've included the output of the acme.sh command with debug level 2 below. Any help would be appreciated as to what is going on.
[Wed 12 Jun 2024 01:31:07 PM EDT] Lets find script dir.
[Wed 12 Jun 2024 01:31:07 PM EDT] _SCRIPT_='/root/.acme.sh/acme.sh'
[Wed 12 Jun 2024 01:31:07 PM EDT] _script='/root/.acme.sh/acme.sh'
[Wed 12 Jun 2024 01:31:07 PM EDT] _script_home='/root/.acme.sh'
[Wed 12 Jun 2024 01:31:07 PM EDT] Using config home:/root/.acme.sh
[Wed 12 Jun 2024 01:31:07 PM EDT] LE_WORKING_DIR='/root/.acme.sh'
[Wed 12 Jun 2024 01:31:07 PM EDT] Running cmd: cron
[Wed 12 Jun 2024 01:31:07 PM EDT] Using config home:/root/.acme.sh
[Wed 12 Jun 2024 01:31:07 PM EDT] default_acme_server
[Wed 12 Jun 2024 01:31:07 PM EDT] ACME_DIRECTORY='https://acme.zerossl.com/v2/DV90'
[Wed 12 Jun 2024 01:31:07 PM EDT] _ACME_SERVER_HOST='acme.zerossl.com'
[Wed 12 Jun 2024 01:31:07 PM EDT] _ACME_SERVER_PATH='v2/DV90'
[Wed 12 Jun 2024 01:31:07 PM EDT] Using config home:/root/.acme.sh
[Wed 12 Jun 2024 01:31:07 PM EDT] ACME_DIRECTORY='https://acme.zerossl.com/v2/DV90'
[Wed 12 Jun 2024 01:31:07 PM EDT] _ACME_SERVER_HOST='acme.zerossl.com'
[Wed 12 Jun 2024 01:31:07 PM EDT] _ACME_SERVER_PATH='v2/DV90'
[Wed 12 Jun 2024 01:31:07 PM EDT] _stopRenewOnError
[Wed 12 Jun 2024 01:31:07 PM EDT] _server
[Wed 12 Jun 2024 01:31:07 PM EDT] _set_level='2'
[Wed 12 Jun 2024 01:31:07 PM EDT] di='/root/.acme.sh/nc.mydomain.com/'
[Wed 12 Jun 2024 01:31:07 PM EDT] d='nc.mydomain.com'
[Wed 12 Jun 2024 01:31:07 PM EDT] _renewServer
[Wed 12 Jun 2024 01:31:07 PM EDT] Using config home:/root/.acme.sh
[Wed 12 Jun 2024 01:31:07 PM EDT] ACME_DIRECTORY='https://acme.zerossl.com/v2/DV90'
[Wed 12 Jun 2024 01:31:07 PM EDT] _ACME_SERVER_HOST='acme.zerossl.com'
[Wed 12 Jun 2024 01:31:07 PM EDT] _ACME_SERVER_PATH='v2/DV90'
[Wed 12 Jun 2024 01:31:07 PM EDT] DOMAIN_PATH='/root/.acme.sh/nc.mydomain.com'
[Wed 12 Jun 2024 01:31:07 PM EDT] Le_API='https://acme-v02.api.letsencrypt.org/directory'
[Wed 12 Jun 2024 01:31:07 PM EDT] initpath again.
[Wed 12 Jun 2024 01:31:07 PM EDT] Using config home:/root/.acme.sh
[Wed 12 Jun 2024 01:31:07 PM EDT] ACME_DIRECTORY='https://acme-v02.api.letsencrypt.org/directory'
[Wed 12 Jun 2024 01:31:07 PM EDT] _ACME_SERVER_HOST='acme-v02.api.letsencrypt.org'
[Wed 12 Jun 2024 01:31:07 PM EDT] _ACME_SERVER_PATH='directory'
[Wed 12 Jun 2024 01:31:07 PM EDT] _main_domain='nc.mydomain.com'
[Wed 12 Jun 2024 01:31:07 PM EDT] _alt_domains='no'
[Wed 12 Jun 2024 01:31:07 PM EDT] 'dns_gd' does not contain 'dns'
[Wed 12 Jun 2024 01:31:07 PM EDT] 'dns_gd' does not contain 'dns'
[Wed 12 Jun 2024 01:31:07 PM EDT] Le_NextRenewTime='1717993546'
[Wed 12 Jun 2024 01:31:07 PM EDT] Using ACME_DIRECTORY: https://acme-v02.api.letsencrypt.org/directory
[Wed 12 Jun 2024 01:31:07 PM EDT] _init api for server: https://acme-v02.api.letsencrypt.org/directory
[Wed 12 Jun 2024 01:31:07 PM EDT] GET
[Wed 12 Jun 2024 01:31:07 PM EDT] url='https://acme-v02.api.letsencrypt.org/directory'
[Wed 12 Jun 2024 01:31:07 PM EDT] timeout=
[Wed 12 Jun 2024 01:31:07 PM EDT] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.9bE3ljouQr -g '
[Wed 12 Jun 2024 01:31:08 PM EDT] ret='0'
[Wed 12 Jun 2024 01:31:08 PM EDT] response='{
"QAgJdJY-frM": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
"keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
"meta": {
"caaIdentities": [
"letsencrypt.org"
],
"termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.4-April-3-2024.pdf",
"website": "https://letsencrypt.org"
},
"newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
"newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
"newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
"renewalInfo": "https://acme-v02.api.letsencrypt.org/draft-ietf-acme-ari-03/renewalInfo",
"revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
}'
[Wed 12 Jun 2024 01:31:08 PM EDT] ACME_KEY_CHANGE='https://acme-v02.api.letsencrypt.org/acme/key-change'
[Wed 12 Jun 2024 01:31:08 PM EDT] ACME_NEW_AUTHZ
[Wed 12 Jun 2024 01:31:08 PM EDT] ACME_NEW_ORDER='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Wed 12 Jun 2024 01:31:08 PM EDT] ACME_NEW_ACCOUNT='https://acme-v02.api.letsencrypt.org/acme/new-acct'
[Wed 12 Jun 2024 01:31:08 PM EDT] ACME_REVOKE_CERT='https://acme-v02.api.letsencrypt.org/acme/revoke-cert'
[Wed 12 Jun 2024 01:31:08 PM EDT] ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.4-April-3-2024.pdf'
[Wed 12 Jun 2024 01:31:08 PM EDT] ACME_NEW_NONCE='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Wed 12 Jun 2024 01:31:08 PM EDT] _on_before_issue
[Wed 12 Jun 2024 01:31:08 PM EDT] _chk_main_domain='nc.mydomain.com'
[Wed 12 Jun 2024 01:31:08 PM EDT] _chk_alt_domains
[Wed 12 Jun 2024 01:31:08 PM EDT] 'dns_gd' does not contain 'no'
[Wed 12 Jun 2024 01:31:08 PM EDT] Le_LocalAddress
[Wed 12 Jun 2024 01:31:08 PM EDT] d='nc.mydomain.com'
[Wed 12 Jun 2024 01:31:08 PM EDT] Check for domain='nc.mydomain.com'
[Wed 12 Jun 2024 01:31:08 PM EDT] _currentRoot='dns_gd'
[Wed 12 Jun 2024 01:31:08 PM EDT] d
[Wed 12 Jun 2024 01:31:08 PM EDT] 'dns_gd' does not contain 'apache'
[Wed 12 Jun 2024 01:31:08 PM EDT] _saved_account_key_hash='IMvUaySW34HaEIbAHYWgRwhff9h7Yjpcm8PlSql3dsA='
[Wed 12 Jun 2024 01:31:08 PM EDT] _saved_account_key_hash is not changed, skip register account.
[Wed 12 Jun 2024 01:31:08 PM EDT] Read key length:2048
[Wed 12 Jun 2024 01:31:08 PM EDT] _createcsr
[Wed 12 Jun 2024 01:31:08 PM EDT] domain='nc.mydomain.com'
[Wed 12 Jun 2024 01:31:08 PM EDT] domainlist
[Wed 12 Jun 2024 01:31:08 PM EDT] csrkey='/root/.acme.sh/nc.mydomain.com/nc.mydomain.com.key'
[Wed 12 Jun 2024 01:31:08 PM EDT] csr='/root/.acme.sh/nc.mydomain.com/nc.mydomain.com.csr'
[Wed 12 Jun 2024 01:31:08 PM EDT] csrconf='/root/.acme.sh/nc.mydomain.com/nc.mydomain.com.csr.conf'
[Wed 12 Jun 2024 01:31:08 PM EDT] seg='nc'
[Wed 12 Jun 2024 01:31:08 PM EDT] _is_idn_d='nc.mydomain.com'
[Wed 12 Jun 2024 01:31:08 PM EDT] _idn_temp
[Wed 12 Jun 2024 01:31:08 PM EDT] _is_idn_d='nc.mydomain.com'
[Wed 12 Jun 2024 01:31:08 PM EDT] _idn_temp
[Wed 12 Jun 2024 01:31:08 PM EDT] _csr_cn='nc.mydomain.com'
[Wed 12 Jun 2024 01:31:08 PM EDT] seg='nc'
[Wed 12 Jun 2024 01:31:08 PM EDT] Getting domain auth token for each domain
[Wed 12 Jun 2024 01:31:08 PM EDT] seg='nc'
[Wed 12 Jun 2024 01:31:08 PM EDT] _is_idn_d='nc.mydomain.com'
[Wed 12 Jun 2024 01:31:08 PM EDT] _idn_temp
[Wed 12 Jun 2024 01:31:08 PM EDT] d
[Wed 12 Jun 2024 01:31:08 PM EDT] _identifiers='{"type":"dns","value":"nc.mydomain.com"}'
[Wed 12 Jun 2024 01:31:08 PM EDT] _notBefore
[Wed 12 Jun 2024 01:31:08 PM EDT] _notAfter
[Wed 12 Jun 2024 01:31:08 PM EDT] STEP 1, Ordering a Certificate
[Wed 12 Jun 2024 01:31:08 PM EDT] =======Begin Send Signed Request=======
[Wed 12 Jun 2024 01:31:08 PM EDT] url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Wed 12 Jun 2024 01:31:08 PM EDT] payload='{"identifiers": [{"type":"dns","value":"nc.mydomain.com"}]}'
[Wed 12 Jun 2024 01:31:08 PM EDT] RSA key
[Wed 12 Jun 2024 01:31:08 PM EDT] Get nonce with HEAD. ACME_NEW_NONCE='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Wed 12 Jun 2024 01:31:08 PM EDT] HEAD
[Wed 12 Jun 2024 01:31:08 PM EDT] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-nonce'
[Wed 12 Jun 2024 01:31:08 PM EDT] body
[Wed 12 Jun 2024 01:31:08 PM EDT] _postContentType='application/jose+json'
[Wed 12 Jun 2024 01:31:08 PM EDT] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.iH9BHTMjxD -g -I '
[Wed 12 Jun 2024 01:31:09 PM EDT] _ret='0'
[Wed 12 Jun 2024 01:31:09 PM EDT] _headers='HTTP/2 200
server: nginx
date: Wed, 12 Jun 2024 17:31:09 GMT
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
replay-nonce: cp09ZmYxAz83k4x4UmWDSxq4dYLdql0nCGyXT9qt6FTnyvs1JSc
x-frame-options: DENY
strict-transport-security: max-age=604800
'
[Wed 12 Jun 2024 01:31:09 PM EDT] _CACHED_NONCE='cp09ZmYxAz83k4x4UmWDSxq4dYLdql0nCGyXT9qt6FTnyvs1JSc'
[Wed 12 Jun 2024 01:31:09 PM EDT] nonce='cp09ZmYxAz83k4x4UmWDSxq4dYLdql0nCGyXT9qt6FTnyvs1JSc'
[Wed 12 Jun 2024 01:31:09 PM EDT] POST
[Wed 12 Jun 2024 01:31:09 PM EDT] _post_url='https://acme-v02.api.letsencrypt.org/acme/new-order'
[Wed 12 Jun 2024 01:31:09 PM EDT] body='{"protected": "eyJub25jZSI6ICJjcDA5Wm1ZeEF6ODNrNHg0VW1XRFN4cTRkWUxkcWwwbkNHeVhUOXF0NkZUbnl2czFKU2MiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL25ldy1vcmRlciIsICJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTE3NTEwNzgwIn0", "payload": "eyJpZGVudGlmaWVycyI6IFt7InR5cGUiOiJkbnMiLCJ2YWx1ZSI6Im5jLmFhZ21nbXQuY29tIn1dfQ", "signature": "fTNy09P05jMLFRR6ezlhC-dIDa8_A3nG24bt5JQVZC2v_K7noI75i9FEMZn5-n3xp44dvnFN69yVI3yadvonwBZlBK8BsGRAH2TLLoUU-4eISzcJPb-qbZW8Nw7UmTdM3-2ZKzDMHwt663-PfMvCBX78a0soMHCqSPnqADxisD-2YFNaRp_exrabKJhh4dTf6nq7LlD2EIKE-HQCN4r_KGufkw5f22mhwZHfoRnU1yyoWLt4o_-JSBvdKwjwdTg0SU9cWfp9W_g0fTXJFYZeoNEDKArfzecRNbQs0598E4e3P3ihmHKasRUAvPWeiCu1MIHerlVKEwmoKg1IKmx86w"}'
[Wed 12 Jun 2024 01:31:09 PM EDT] _postContentType='application/jose+json'
[Wed 12 Jun 2024 01:31:09 PM EDT] Http already initialized.
[Wed 12 Jun 2024 01:31:09 PM EDT] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.iH9BHTMjxD -g '
[Wed 12 Jun 2024 01:31:09 PM EDT] _ret='0'
[Wed 12 Jun 2024 01:31:09 PM EDT] responseHeaders='HTTP/2 201
server: nginx
date: Wed, 12 Jun 2024 17:31:09 GMT
content-type: application/json
content-length: 339
boulder-requester: 117510780
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
location: https://acme-v02.api.letsencrypt.org/acme/order/117510780/277783284197
replay-nonce: Df5PeVqQbAt0zuhecasDUoPSQuttPE5OcebZWfOzLW4wsEsdJHE
x-frame-options: DENY
strict-transport-security: max-age=604800
'
[Wed 12 Jun 2024 01:31:09 PM EDT] code='201'
[Wed 12 Jun 2024 01:31:09 PM EDT] original='{
"status": "pending",
"expires": "2024-06-19T17:31:09Z",
"identifiers": [
{
"type": "dns",
"value": "nc.mydomain.com"
}
],
"authorizations": [
"https://acme-v02.api.letsencrypt.org/acme/authz-v3/363072141127"
],
"finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/117510780/277783284197"
}'
[Wed 12 Jun 2024 01:31:09 PM EDT] response='{"status":"pending","expires":"2024-06-19T17:31:09Z","identifiers":[{"type":"dns","value":"nc.mydomain.com"}],"authorizations":["https://acme-v02.api.letsencrypt.org/acme/authz-v3/363072141127"],"finalize":"https://acme-v02.api.letsencrypt.org/acme/finalize/117510780/277783284197"}'
[Wed 12 Jun 2024 01:31:09 PM EDT] Le_LinkOrder='https://acme-v02.api.letsencrypt.org/acme/order/117510780/277783284197'
[Wed 12 Jun 2024 01:31:09 PM EDT] Le_OrderFinalize='https://acme-v02.api.letsencrypt.org/acme/finalize/117510780/277783284197'
[Wed 12 Jun 2024 01:31:09 PM EDT] _authorizations_seg='https://acme-v02.api.letsencrypt.org/acme/authz-v3/363072141127'
[Wed 12 Jun 2024 01:31:09 PM EDT] STEP 2, Get the authorizations of each domain
[Wed 12 Jun 2024 01:31:09 PM EDT] _authz_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/363072141127'
[Wed 12 Jun 2024 01:31:09 PM EDT] =======Begin Send Signed Request=======
[Wed 12 Jun 2024 01:31:09 PM EDT] url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/363072141127'
[Wed 12 Jun 2024 01:31:09 PM EDT] payload
[Wed 12 Jun 2024 01:31:09 PM EDT] Use cached jwk for file: /root/.acme.sh/ca/acme-v02.api.letsencrypt.org/directory/account.key
[Wed 12 Jun 2024 01:31:09 PM EDT] Use _CACHED_NONCE='Df5PeVqQbAt0zuhecasDUoPSQuttPE5OcebZWfOzLW4wsEsdJHE'
[Wed 12 Jun 2024 01:31:09 PM EDT] nonce='Df5PeVqQbAt0zuhecasDUoPSQuttPE5OcebZWfOzLW4wsEsdJHE'
[Wed 12 Jun 2024 01:31:09 PM EDT] POST
[Wed 12 Jun 2024 01:31:09 PM EDT] _post_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/363072141127'
[Wed 12 Jun 2024 01:31:09 PM EDT] body='{"protected": "eyJub25jZSI6ICJEZjVQZVZxUWJBdDB6dWhlY2FzRFVvUFNRdXR0UEU1T2NlYlpXZk96TFc0d3NFc2RKSEUiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LXYzLzM2MzA3MjE0MTEyNyIsICJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMTE3NTEwNzgwIn0", "payload": "", "signature": "hGCbNAlSso7-MX2YDGxFNUl_S56rqJsM2S691jhqGfIq6eW3uyCjfV6pFTBPY7fMJvL6fjQU03eA2dNi5swNjEgj2YS36TG28rQa908Vlw9kE5aMEtc0KFZhWKgpkQ2gogApyrtMaM0rAkoTPfO-v4zq3ab5DeO_0aCZ_LAYx2OZ31_N6u229o5MqCopODLCZc4yWCmqe3NPgvG4uDrN31xrTvkUHv-_TXw4kxxfICLKIES706cw7x64Ndu2drwyfnGaVgFIczyziwQXEQuaaIgfz26o2CVZShux3ygy46uvR66gozHpoXIxAOZGDUc8DOMUmzWpIPXIovZ5a4RIGA"}'
[Wed 12 Jun 2024 01:31:09 PM EDT] _postContentType='application/jose+json'
[Wed 12 Jun 2024 01:31:09 PM EDT] Http already initialized.
[Wed 12 Jun 2024 01:31:09 PM EDT] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.iH9BHTMjxD -g '
[Wed 12 Jun 2024 01:31:09 PM EDT] _ret='0'
[Wed 12 Jun 2024 01:31:09 PM EDT] responseHeaders='HTTP/2 200
server: nginx
date: Wed, 12 Jun 2024 17:31:09 GMT
content-type: application/json
content-length: 798
boulder-requester: 117510780
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
replay-nonce: RczC3CZ0ONEsuAi_xCWNUCZzzusY0capceeNsfSKDSV6QC6QEa8
x-frame-options: DENY
strict-transport-security: max-age=604800
'
[Wed 12 Jun 2024 01:31:09 PM EDT] code='200'
[Wed 12 Jun 2024 01:31:09 PM EDT] original='{
"identifier": {
"type": "dns",
"value": "nc.mydomain.com"
},
"status": "pending",
"expires": "2024-06-19T17:31:09Z",
"challenges": [
{
"type": "http-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/kF9jEQ",
"token": "Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"
},
{
"type": "dns-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/BCZvMw",
"token": "Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"
},
{
"type": "tls-alpn-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/NPcYcg",
"token": "Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"
}
]
}'
[Wed 12 Jun 2024 01:31:09 PM EDT] response='{"identifier":{"type":"dns","value":"nc.mydomain.com"},"status":"pending","expires":"2024-06-19T17:31:09Z","challenges":[{"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/kF9jEQ","token":"Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"},{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/BCZvMw","token":"Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/NPcYcg","token":"Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"}]}'
[Wed 12 Jun 2024 01:31:09 PM EDT] response='{"identifier":{"type":"dns","value":"nc.mydomain.com"},"status":"pending","expires":"2024-06-19T17:31:09Z","challenges":[{"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/kF9jEQ","token":"Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"},{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/BCZvMw","token":"Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/NPcYcg","token":"Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"}]}'
[Wed 12 Jun 2024 01:31:09 PM EDT] _d='nc.mydomain.com'
[Wed 12 Jun 2024 01:31:09 PM EDT] _authorizations_map='nc.mydomain.com,{"identifier":{"type":"dns","value":"nc.mydomain.com"},"status":"pending","expires":"2024-06-19T17:31:09Z","challenges":[{"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/kF9jEQ","token":"Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"},{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/BCZvMw","token":"Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/NPcYcg","token":"Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"}]}#https://acme-v02.api.letsencrypt.org/acme/authz-v3/363072141127
'
[Wed 12 Jun 2024 01:31:09 PM EDT] d='nc.mydomain.com'
[Wed 12 Jun 2024 01:31:09 PM EDT] _w='dns_gd'
[Wed 12 Jun 2024 01:31:10 PM EDT] _currentRoot='dns_gd'
[Wed 12 Jun 2024 01:31:10 PM EDT] _is_idn_d='nc.mydomain.com'
[Wed 12 Jun 2024 01:31:10 PM EDT] _idn_temp
[Wed 12 Jun 2024 01:31:10 PM EDT] _candidates='nc.mydomain.com,{"identifier":{"type":"dns","value":"nc.mydomain.com"},"status":"pending","expires":"2024-06-19T17:31:09Z","challenges":[{"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/kF9jEQ","token":"Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"},{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/BCZvMw","token":"Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/NPcYcg","token":"Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"}]}#https://acme-v02.api.letsencrypt.org/acme/authz-v3/363072141127'
[Wed 12 Jun 2024 01:31:10 PM EDT] response='{"identifier":{"type":"dns","value":"nc.mydomain.com"},"status":"pending","expires":"2024-06-19T17:31:09Z","challenges":[{"type":"http-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/kF9jEQ","token":"Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"},{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/BCZvMw","token":"Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"},{"type":"tls-alpn-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/NPcYcg","token":"Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"}]}#https://acme-v02.api.letsencrypt.org/acme/authz-v3/363072141127'
[Wed 12 Jun 2024 01:31:10 PM EDT] _authz_url='https://acme-v02.api.letsencrypt.org/acme/authz-v3/363072141127'
[Wed 12 Jun 2024 01:31:10 PM EDT] entry='"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/BCZvMw","token":"Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"'
[Wed 12 Jun 2024 01:31:10 PM EDT] token='Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o'
[Wed 12 Jun 2024 01:31:10 PM EDT] uri='https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/BCZvMw'
[Wed 12 Jun 2024 01:31:10 PM EDT] keyauthorization='Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o.ip7UDMldWy5S7NQ0XZHjoscxGDDil2iefFFEdwJXVHM'
[Wed 12 Jun 2024 01:31:10 PM EDT] dvlist='nc.mydomain.com#Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o.ip7UDMldWy5S7NQ0XZHjoscxGDDil2iefFFEdwJXVHM#https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/BCZvMw#dns-01#dns_gd#https://acme-v02.api.letsencrypt.org/acme/authz-v3/363072141127'
[Wed 12 Jun 2024 01:31:10 PM EDT] d
[Wed 12 Jun 2024 01:31:10 PM EDT] vlist='nc.mydomain.com#Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o.ip7UDMldWy5S7NQ0XZHjoscxGDDil2iefFFEdwJXVHM#https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/BCZvMw#dns-01#dns_gd#https://acme-v02.api.letsencrypt.org/acme/authz-v3/363072141127,'
[Wed 12 Jun 2024 01:31:10 PM EDT] d='nc.mydomain.com'
[Wed 12 Jun 2024 01:31:10 PM EDT] _d_alias
[Wed 12 Jun 2024 01:31:10 PM EDT] txtdomain='_acme-challenge.nc.mydomain.com'
[Wed 12 Jun 2024 01:31:10 PM EDT] txt='kdVPJDvTaU28Y4YLaFihusxV1JWdSIr6CVcQc9Y30mI'
[Wed 12 Jun 2024 01:31:10 PM EDT] d_api='/root/.acme.sh/dnsapi/dns_gd.sh'
[Wed 12 Jun 2024 01:31:10 PM EDT] dns_entry='nc.mydomain.com,_acme-challenge.nc.mydomain.com,,dns_gd,kdVPJDvTaU28Y4YLaFihusxV1JWdSIr6CVcQc9Y30mI,/root/.acme.sh/dnsapi/dns_gd.sh'
[Wed 12 Jun 2024 01:31:10 PM EDT] Found domain api file: /root/.acme.sh/dnsapi/dns_gd.sh
[Wed 12 Jun 2024 01:31:10 PM EDT] First detect the root zone
[Wed 12 Jun 2024 01:31:10 PM EDT] domains/nc.mydomain.com
[Wed 12 Jun 2024 01:31:10 PM EDT] GET
[Wed 12 Jun 2024 01:31:10 PM EDT] url='https://api.godaddy.com/v1/domains/nc.mydomain.com'
[Wed 12 Jun 2024 01:31:10 PM EDT] timeout=
[Wed 12 Jun 2024 01:31:10 PM EDT] Http already initialized.
[Wed 12 Jun 2024 01:31:10 PM EDT] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.iH9BHTMjxD -g '
[Wed 12 Jun 2024 01:31:10 PM EDT] ret='0'
[Wed 12 Jun 2024 01:31:10 PM EDT] response='{"code":"ACCESS_DENIED","message":"Authenticated user is not allowed access"}'
[Wed 12 Jun 2024 01:31:10 PM EDT] _sub_domain='_acme-challenge'
[Wed 12 Jun 2024 01:31:10 PM EDT] _domain='nc.mydomain.com'
[Wed 12 Jun 2024 01:31:10 PM EDT] Getting existing records
[Wed 12 Jun 2024 01:31:10 PM EDT] domains/nc.mydomain.com/records/TXT/_acme-challenge
[Wed 12 Jun 2024 01:31:10 PM EDT] GET
[Wed 12 Jun 2024 01:31:10 PM EDT] url='https://api.godaddy.com/v1/domains/nc.mydomain.com/records/TXT/_acme-challenge'
[Wed 12 Jun 2024 01:31:10 PM EDT] timeout=
[Wed 12 Jun 2024 01:31:10 PM EDT] Http already initialized.
[Wed 12 Jun 2024 01:31:10 PM EDT] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.iH9BHTMjxD -g '
[Wed 12 Jun 2024 01:31:11 PM EDT] ret='0'
[Wed 12 Jun 2024 01:31:11 PM EDT] response='{"code":"UNKNOWN_DOMAIN","message":"The given domain is not registered, or does not have a zone file"}'
[Wed 12 Jun 2024 01:31:11 PM EDT] _add_data='{"data":"kdVPJDvTaU28Y4YLaFihusxV1JWdSIr6CVcQc9Y30mI"}'
[Wed 12 Jun 2024 01:31:11 PM EDT] domains/nc.mydomain.com/records/TXT/_acme-challenge
[Wed 12 Jun 2024 01:31:11 PM EDT] data (PUT): ='[{"data":"kdVPJDvTaU28Y4YLaFihusxV1JWdSIr6CVcQc9Y30mI"}]'
[Wed 12 Jun 2024 01:31:11 PM EDT] PUT
[Wed 12 Jun 2024 01:31:11 PM EDT] _post_url='https://api.godaddy.com/v1/domains/nc.mydomain.com/records/TXT/_acme-challenge'
[Wed 12 Jun 2024 01:31:11 PM EDT] body='[{"data":"kdVPJDvTaU28Y4YLaFihusxV1JWdSIr6CVcQc9Y30mI"}]'
[Wed 12 Jun 2024 01:31:11 PM EDT] _postContentType
[Wed 12 Jun 2024 01:31:11 PM EDT] Http already initialized.
[Wed 12 Jun 2024 01:31:11 PM EDT] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.iH9BHTMjxD -g '
[Wed 12 Jun 2024 01:31:11 PM EDT] _ret='0'
[Wed 12 Jun 2024 01:31:11 PM EDT] response
[Wed 12 Jun 2024 01:31:11 PM EDT] Checking updated records of '_acme-challenge.nc.mydomain.com'
[Wed 12 Jun 2024 01:31:11 PM EDT] domains/nc.mydomain.com/records/TXT/_acme-challenge
[Wed 12 Jun 2024 01:31:11 PM EDT] GET
[Wed 12 Jun 2024 01:31:11 PM EDT] url='https://api.godaddy.com/v1/domains/nc.mydomain.com/records/TXT/_acme-challenge'
[Wed 12 Jun 2024 01:31:11 PM EDT] timeout=
[Wed 12 Jun 2024 01:31:11 PM EDT] Http already initialized.
[Wed 12 Jun 2024 01:31:11 PM EDT] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.iH9BHTMjxD -g '
[Wed 12 Jun 2024 01:31:11 PM EDT] ret='0'
[Wed 12 Jun 2024 01:31:11 PM EDT] response='{"code":"UNKNOWN_DOMAIN","message":"The given domain is not registered, or does not have a zone file"}'
[Wed 12 Jun 2024 01:31:11 PM EDT] TXT record 'kdVPJDvTaU28Y4YLaFihusxV1JWdSIr6CVcQc9Y30mI' for '_acme-challenge.nc.mydomain.com', value wasn't set!
[Wed 12 Jun 2024 01:31:11 PM EDT] Error add txt for domain:_acme-challenge.nc.mydomain.com
[Wed 12 Jun 2024 01:31:11 PM EDT] _on_issue_err
[Wed 12 Jun 2024 01:31:11 PM EDT] Please add '--debug' or '--log' to check more details.
[Wed 12 Jun 2024 01:31:11 PM EDT] See: https://github.com/acmesh-official/acme.sh/wiki/How-to-debug-acme.sh
[Wed 12 Jun 2024 01:31:11 PM EDT] _chk_vlist='nc.mydomain.com#Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o.ip7UDMldWy5S7NQ0XZHjoscxGDDil2iefFFEdwJXVHM#https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/BCZvMw#dns-01#dns_gd#https://acme-v02.api.letsencrypt.org/acme/authz-v3/363072141127,'
[Wed 12 Jun 2024 01:31:11 PM EDT] start to deactivate authz
[Wed 12 Jun 2024 01:31:11 PM EDT] Trigger domain validation.
[Wed 12 Jun 2024 01:31:11 PM EDT] _t_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/BCZvMw'
[Wed 12 Jun 2024 01:31:11 PM EDT] _t_key_authz='Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o.ip7UDMldWy5S7NQ0XZHjoscxGDDil2iefFFEdwJXVHM'
[Wed 12 Jun 2024 01:31:11 PM EDT] _t_vtype
[Wed 12 Jun 2024 01:31:11 PM EDT] =======Begin Send Signed Request=======
[Wed 12 Jun 2024 01:31:11 PM EDT] url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/BCZvMw'
[Wed 12 Jun 2024 01:31:11 PM EDT] payload='{}'
[Wed 12 Jun 2024 01:31:11 PM EDT] Use cached jwk for file: /root/.acme.sh/ca/acme-v02.api.letsencrypt.org/directory/account.key
[Wed 12 Jun 2024 01:31:11 PM EDT] Use _CACHED_NONCE='RczC3CZ0ONEsuAi_xCWNUCZzzusY0capceeNsfSKDSV6QC6QEa8'
[Wed 12 Jun 2024 01:31:11 PM EDT] nonce='RczC3CZ0ONEsuAi_xCWNUCZzzusY0capceeNsfSKDSV6QC6QEa8'
[Wed 12 Jun 2024 01:31:11 PM EDT] POST
[Wed 12 Jun 2024 01:31:11 PM EDT] _post_url='https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/BCZvMw'
[Wed 12 Jun 2024 01:31:12 PM EDT] body='{"protected": "eyJub25jZSI6ICJSY3pDM0NaME9ORXN1QWlfeENXTlVDWnp6dXNZMGNhcGNlZU5zZlNLRFNWNlFDNlFFYTgiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NoYWxsLXYzLzM2MzA3MjE0MTEyNy9CQ1p2TXciLCAiYWxnIjogIlJTMjU2IiwgImtpZCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hY2N0LzExNzUxMDc4MCJ9", "payload": "e30", "signature": "NCvWUSIMpFyPsz6wg-dp_tc4X7SzJIgivTofnVSZLCJLKraRbZqVlYBZ1TLqqOyQeBXNS8MEwtAJXyzxhB5-irEs1701cDDLmsTtqvV7rH6ipjTjoAljdo_zO8y0WWnDnEukftMr5kkDB6HMM7HLfKGYYfobI4qNTyxrJ03PRQ7MKFC_qwH5-F85h1kFfYZ52XTmPHrzKpUhJ2vTeSXIfg9NwsGj3YRpO6AYhRQITrC90MuIyRyPVLEq5ZAUtaXCuvNA8idRbnq4F44uJvFj1j4xfuWy1W8DqGtGOYMR1H4Z6-Zizh5y3oswitBttHYwMcDvJXxw57Z0Sndh1F2hSg"}'
[Wed 12 Jun 2024 01:31:12 PM EDT] _postContentType='application/jose+json'
[Wed 12 Jun 2024 01:31:12 PM EDT] Http already initialized.
[Wed 12 Jun 2024 01:31:12 PM EDT] _CURL='curl --silent --dump-header /root/.acme.sh/http.header -L --trace-ascii /tmp/tmp.iH9BHTMjxD -g '
[Wed 12 Jun 2024 01:31:12 PM EDT] _ret='0'
[Wed 12 Jun 2024 01:31:12 PM EDT] responseHeaders='HTTP/2 200
server: nginx
date: Wed, 12 Jun 2024 17:31:12 GMT
content-type: application/json
content-length: 186
boulder-requester: 117510780
cache-control: public, max-age=0, no-cache
link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
link: <https://acme-v02.api.letsencrypt.org/acme/authz-v3/363072141127>;rel="up"
location: https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/BCZvMw
replay-nonce: su1caOmbz0QWdGIW6UqzjuWh0f6m9cj3D7dCfIk7pGcYgTDwzf8
x-frame-options: DENY
strict-transport-security: max-age=604800
'
[Wed 12 Jun 2024 01:31:12 PM EDT] code='200'
[Wed 12 Jun 2024 01:31:12 PM EDT] original='{
"type": "dns-01",
"status": "pending",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/BCZvMw",
"token": "Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"
}'
[Wed 12 Jun 2024 01:31:12 PM EDT] response='{"type":"dns-01","status":"pending","url":"https://acme-v02.api.letsencrypt.org/acme/chall-v3/363072141127/BCZvMw","token":"Yb6uuz--9zUOG2oJt39Il-WS1_6dflJadSS9VDH0x9o"}'
[Wed 12 Jun 2024 01:31:12 PM EDT] 'dns_gd' does not contain 'dns'
[Wed 12 Jun 2024 01:31:12 PM EDT] socat doesn't exist.
[Wed 12 Jun 2024 01:31:12 PM EDT] Diagnosis versions:
openssl:openssl
OpenSSL 1.1.1f 31 Mar 2020
apache:
apache doesn't exist.
nginx:
nginx doesn't exist.
socat:
[Wed 12 Jun 2024 01:31:12 PM EDT] pid
[Wed 12 Jun 2024 01:31:12 PM EDT] No need to restore nginx, skip.
[Wed 12 Jun 2024 01:31:12 PM EDT] _clearupdns
[Wed 12 Jun 2024 01:31:12 PM EDT] dns_entries
[Wed 12 Jun 2024 01:31:12 PM EDT] skip dns.
[Wed 12 Jun 2024 01:31:12 PM EDT] Return code: 1
[Wed 12 Jun 2024 01:31:12 PM EDT] Error renew nc.mydomain.com.
[Wed 12 Jun 2024 01:31:12 PM EDT] _error_level='1'
[Wed 12 Jun 2024 01:31:12 PM EDT] _set_level='2'
[Wed 12 Jun 2024 01:31:12 PM EDT] The NOTIFY_HOOK is empty, just return.
Hi, any updates on this @Neilpang ?
I think i found the cause... Sadly no workaround, godaddy blocked API usage for accounts with less than 10
domains
Reddit post: https://www.reddit.com/r/godaddy/comments/1bl0f5r/am_i_the_only_one_who_cant_use_the_api/
Sadly, that turned out to be the case with further research. The fix wasn't too bad though. I just moved my DNS hosting over to Cloudflare, did the API setup with them, and issued again through acme.sh, and was all set. I'll probably move my domains away from GoDaddy when I get some time.
Sadly, that turned out to be the case with further research. The fix wasn't too bad though. I just moved my DNS hosting over to Cloudflare, did the API setup with them, and issued again through acme.sh, and was all set. I'll probably move my domains away from GoDaddy when I get some time.
I'm doing the same, moving to CloudFlare DNS. This is really a shame....
Steps to reproduce
Do a request that includes a subdomain, or is for a subdomain, via the directions here for godaddy: https://github.com/acmesh-official/acme.sh/wiki/dnsapi#4-use-godaddycom-domain-api-to-automatically-issue-cert
I can do a request for *.mydomain.com or for just mydomain.com, but I can't specify a subdomain that exists on my DNS records as either a CNAME or A record. This always fails for the subdomain.
Another user over on reddit noted this fails for them as well even though it has worked in the past.
Examples:
acme.sh --issue -d mydomain.com -d subdomain.mydomain.com --dns dns_gd or acme.sh --issue -d subdomain.mydomain.com --dns dns_gd
Debug log