search

linuxserver / docker-swag

Nginx webserver and reverse proxy with php support and a built-in Certbot (Let's Encrypt) client. It also contains fail2ban for intrusion prevention.
https://docs.linuxserver.io/general/swag
GNU General Public License v3.0
2.93k stars 246 forks source link

[BUG] Namecheap unable to renew certificates when greater than 10 sub domains using DNS validation #510

Open the1poet opened 1 month ago

the1poet commented 1 month ago

Is there an existing issue for this?

Current Behavior

During the certificate renewal process, when starting my docker instance, swag does not start completely when 10 or more subdomains are configured. When reading the Namecheap API documentation (https://www.namecheap.com/support/api/methods/domains-dns/set-hosts/) there is reference to this:

IMPORTANT: We recommend you use HTTPPOST method when setting more than 10 hostnames.

Below is a screenshot of the docker config docker

Expected Behavior

Docker renews certificates and starts as usual.

Steps To Reproduce

  1. Configure more than 10 subdomains
  2. Start SWAG docker

Environment

- OS:Unraid 7.0.0-beta.2
- SWAG version:

CPU architecture

x86-64

Docker creation

see docker screenshot in current behavior

Container logs

dns validation via namecheap plugin is selected
Generating new certificate
Account registered.
Requesting a certificate for my.domain and 12 more domains
Remote: 21
To set: 22
Remote: 22
To set: 23
Remote: 23
To set: 24
Remote: 24
To set: 25
Remote: 25
To set: 26
Remote: 26
To set: 27
Remote: 27
To set: 28
Remote: 28
To set: 29
Remote: 29
To set: 30
Remote: 30
To set: 31
Remote: 31
To set: 32
Remote: 32
To set: 33
Remote: 33
To set: 34
An unexpected error occurred:
lexicon._private.providers.namecheap._ApiError: 1 - Did not receive 200 (Ok) response
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.
ERROR: Cert does not exist! Please see the validation error above. Make sure you entered correct credentials into the /config/dns-conf/namecheap.ini file.
github-actions[bot] commented 1 month ago

Thanks for opening your first issue here! Be sure to follow the relevant issue templates, or risk having this issue marked as invalid.

j0nnymoe commented 1 month ago

Any reason why at this point you wouldn't just use a wildcard cert?

LinuxServer-CI commented 3 weeks ago

This issue has been automatically marked as stale because it has not had recent activity. This might be due to missing feedback from OP. It will be closed if no further activity occurs. Thank you for your contributions.