API TLS does not work - Githubissues

perlin-network / wavelet

Write once, run forever. Deploy robust, scalable, decentralized WebAssembly applications on Wavelet.

https://wavelet.perlin.net

MIT License

258 stars 41 forks source link

API TLS does not work #335

Open junshimizu opened 4 years ago

junshimizu commented 4 years ago

I set --api.host and --api.port and --api.certs and exec wavelet under linux.

I got this error :( FTL Failed to listen to port 443. error: "listen tcp :443: bind: permission denied"

I tried to change 443 port to other port and exec again, I got this error :( acme/autocert: missing server name

1) Please add api TLS port parameter. 2) Please give api.host parameter to GetCertificate.

rkeene commented 4 years ago

Thanks for the feedback, we're looking into these changes. However, if you're using autocert it doesn't make sense to specify the API TLS port as something other than 443/tcp since that's the only port that can be verified.

We'll add support for specifying a different API TLS port if you already have an X.509 certificate and not using autocert.

junshimizu commented 4 years ago

Current using autocert library version is for Let's Encrypt v1. But Let's Encrypt v1 is already deprecated. https://github.com/golang/crypto/commit/a950601f39e69382d60ea46fa15cecc9d9b70ec6 https://community.letsencrypt.org/t/end-of-life-plan-for-acmev1/88430 Please update golang.org/x/crypto version.