Cert check missing in box
-
Breaking this out from this post..
Running into a UI down scenario, as recommended I deleted all the conf/cert files, and gotten
nginxstarted, however the UI is still not accessible afterboxrestart because of a missing cert and browsers refuse to connect with no override.
All apps are, of course, inaccessible too, until configs and certs can be regenerated.On restart,
boxseems to recreate the/etc/nginx/applications/my.domain.confBUT doesn't check if the/home/yellowtent/platformdata/nginx/certs/my.domain.host.certis there to make sure the UI can come up.Please add this check and create the cert if missing, and reload
nginx.This will make
boxmore resilient. -
Breaking this out from this post..
Running into a UI down scenario, as recommended I deleted all the conf/cert files, and gotten
nginxstarted, however the UI is still not accessible afterboxrestart because of a missing cert and browsers refuse to connect with no override.
All apps are, of course, inaccessible too, until configs and certs can be regenerated.On restart,
boxseems to recreate the/etc/nginx/applications/my.domain.confBUT doesn't check if the/home/yellowtent/platformdata/nginx/certs/my.domain.host.certis there to make sure the UI can come up.Please add this check and create the cert if missing, and reload
nginx.This will make
boxmore resilient. -
@robi Makes sense, I will put this in the next patch release.
In the meantime, is your server up and running again now?
@girish Great.
Yes, thanks for asking, it was a painful several hours during the wee hours of the night figuring out how to generate a set of new certs that would bring the UI back enough to regenerate them all.
I ended up using one of the 3rd party CLI tools for LE called
getssl. -
G girish marked this topic as a question on
-
G girish has marked this topic as solved on
