-
Notifications
You must be signed in to change notification settings - Fork 5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ACME: revoke certificate on agreement update #579
Comments
Ouch. You are getting errors on renewing? |
it actually appears to be a fatal-error
|
If it helps the troubleshooting, I have the acme cache on a docker volume and didn't see the error until I tried to stop and start a new container. The current cache file has:
With debug logging on, the previous log message is
So it's getting past the loadAccount call in CreateConfig |
It probably fails calling |
FYI, Let's Encrypt's new subscriber agreement went into effect today. Current one is always at https://acme-v01.api.letsencrypt.org/terms (just learned this today, https://community.letsencrypt.org/t/how-to-get-url-to-subscriber-agreement-before-registering/2566/2?u=mholt). (Investigating to see if this problem affects Caddy users as well...) |
I have this fatal error when I start my containers now. Is there some way to get around it with traefik v1.0.1? |
Here is a temporary workaround that allows traefik to start (waiting for a fix):
Traefik should then start normally. |
Fixed in #582. I will publish the |
Can someone confirm that |
I'll test it asap. |
@emilevauge |
OK great, thanks @raizyr for testing :) |
Currently getting this error:
Provided agreement URL [https://letsencrypt.org/documents/LE-SA-v1.0.1-July-27-2015.pdf] does not match current agreement URL [https://letsencrypt.org/documents/LE-SA-v1.1.1-August-1-2016.pdf]"
Checking my acme.json the registration body has the older agreement. In this case, the certificate should be revoked and re-issued
The text was updated successfully, but these errors were encountered: