LE cert requires haproxy restart when new domain is added

[edrex]

For example:

core@libre /$ sudo libre provision -a github.com/indiehosters/nextcloud -u nextcloud.pdxhub.org -s

At this point the server has a self-signed cert

subject=/C=FR/ST=Some-State/L=flers/O=Internet Widgits Pty Ltd/OU=Timothee/CN=Timothee/emailAddress=timothee@unteem.org
issuer=/C=FR/ST=Some-State/L=flers/O=Internet Widgits Pty Ltd/OU=Timothee/CN=Timothee/emailAddress=timothee@unteem.org

It appears that the let's encrypt process succeeded, so I guess haproxy isn't picking up the cert.

Restarting haproxy picks up the cert.

core@libre / $ cd /system/haproxy && sudo libre restart

Known issue?

[edrex]

Realizing this may be "by design" and I should just be running libre reload on haproxy after adding a domain. Is this expected behavior?

[edrex]

https://cbonte.github.io/haproxy-dconv/1.7/management.html#4

[pierreozoux]

Strange, this shouldn't happen because of these lines: https://github.com/indiehosters/docker-haproxy/blob/master/docker-entrypoint.sh#L10-L13

Is it the first cert or the following?

[pierreozoux]

I'll close this for now as it is old, but feel free to reopen if needed.