Comments (9)
bpolaszek
commented on September 26, 2024
1
Hello,
Do you have some news about this bug?
I'm experiencing the same issue.
When I php /root/acmephp.phar request mydomain.com --force I've got this:
[AcmePhp\Core\Exception\Server\UnauthorizedServerException]
[unauthorized] The client lacks sufficient authorization: Error creating new cert :: Authorizations for these names not found or expired: mydomain.com (on request "POST https://acme-v01.api.letsencrypt.org/acme/new-cert")
Doing again the authorize / check process before the certificate expiration did the trick, but I can't rely on this for further renewals !
Thank you,
Ben
from acmephp.
Sh1nto
commented on September 26, 2024
1
Hi, i'm Using beta4 and have the Same Issue for the second time:
[AcmePhp\Core\Exception\Server\UnauthorizedServerException]
[unauthorized] The client lacks sufficient authorization: Error creating new cert :: authorizations
for these names not found or expired: mydomain.de, www.mydomain.de
(on request "POST https://acme-v01.api.letsencrypt.org/acme/new-cert")
[GuzzleHttp\Exception\ClientException]
Client error: `POST https://acme-v01.api.letsencrypt.org/acme/new-cert` resulted in a `403 Forbidden` response:
{
"type": "urn:acme:error:unauthorized",
"detail": "Error creating new cert :: authorizations for these names not fo (truncated...)
The domains will expire in 1week. I'm using the following Syntax in the daily cron:
php /root/acmephp.phar request mydomain.de -a www.mydomain.de -q
I'm Missing something? It doesn't make fun to authorize > 20domains every 3month,...
from acmephp.
bpolaszek
commented on September 26, 2024
1
Hi there,
Any news about this issue?
Thank you,
Ben
from acmephp.
tgalopin
commented on September 26, 2024
Hello @dfritschy,
It seems you are not using the same account key as you used when you requested the certificate the first time (that's what Let's Encrypt means by saying The client lacks sufficient authorization. To solve this issue, you can simply re-run the while process of authorization (php acmephp.phar authorize yourdomain.org and php acmephp.phar check yourdomain.org, check the documentation if needed).
Don't hesitate to ask if you have troubles getting a new certificate.
You can also come on Gitter if needed: https://gitter.im/acmephp/acmephp
from acmephp.
dfritschy
commented on September 26, 2024
While I see no reason why the authorization should no longer be valid, I re-run the authorization process using DNS challenge. It proved easier than expected with no delay between authorize and check requests. After that I was able to renew the certificates successfully.
I then also forced the renewal of the other domains, with no authorization required and no problems.
Thanks for your support.
from acmephp.
tgalopin
commented on September 26, 2024
Okay, that's strange but I'm glad your problem was solved. I'll try to reproduce the issue but as I'm not sure what your context is, I can't be sure to solve it.
from acmephp.
cmorgenstern
commented on September 26, 2024
Experienced the same issue with 1.0.0-dev as well:
[root@host user]# php acmephp.phar request domain.com -a www.domain.com -a test.domain.com -a epost.charlesbwise.com -a foo.domain.com
Loading account key pair...
Current certificate will expire in less than a week (2017-01-18 21:58:00), renewal is required.
Loading domain key pair...
Loading domain distinguished name...
Renewing certificate for domain domain.com ...
[AcmePhp\Core\Exception\Server\UnauthorizedServerException]
[unauthorized] The client lacks sufficient authorization: Error creating new cert :: Authorizations for these names not found or expired: domain.com, test.domain.com, foo.domain.com, not.domain.com, www.domain.com (on request "POST https://acme-v01.api.letsencrypt.org/acme/new-cert")
Re-ran the authorization/check process and then renewal was successful. Bit worrisome, though, since I use a cron job to handle renewal but I happened to check the logs in time before the certificates expired.
My environment:
[root@host ~]# uname -a
Linux host 4.8.6-x86_64-linode78 #1 SMP Tue Nov 1 14:51:21 EDT 2016 x86_64 GNU/Linux
[root@host user]# php acmephp.phar --version
Acme PHP - Let's Encrypt client 1.0.0-dev
[root@host user]# php -v
PHP 7.0.14 (cli) (built: Dec 7 2016 17:11:27) ( NTS )
Copyright (c) 1997-2016 The PHP Group
Zend Engine v3.0.0, Copyright (c) 1998-2016 Zend Technologies
from acmephp.
tgalopin
commented on September 26, 2024
Hello @cmorgenstern, thanks for your feedback. I'll have a look at the issue this week-end, I'm glad you didn't have troubles with the renewal (note that you can configure the monitoring to alert you if the renewal failed).
from acmephp.
tgalopin
commented on September 26, 2024
@TheJoin95 probably found the issue here: #71 I will update the code to fix this.
from acmephp.
Related Issues (20)
- Staging environment? HOT 3
- Can you sync acme/core and release a new version? HOT 1
- Error During Renewal HOT 2
- website updates? HOT 1
- getResponseBodySummary(): Return value must be of type string, null returned HOT 1
- "OpenSSL signature could not be verified" on Centos 9 (and other updated SSL stacks)
- Format output for commands
- Feature Request: Customizable truncation char limit for RequestException Errors. HOT 2
- Is this project still maintained? HOT 2
- Short / Alternate chain in acme-php ? HOT 1
- Proposal for v3 HOT 10
- Single certificate renewal failure with run command
- Domain name character capitalisation leads to ChallengeNotSupportedException
- Retry on 503s with RetryAfter? HOT 1
- Upgrade PHP to V8 HOT 4
- Maintenance HOT 6
- Proposal: remove @author tags HOT 8
- Proposal: Make classes final & readonly
- Issue with using Symfony Serializer HOT 11
- Subtree does not work anymore? HOT 5
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from acmephp.