-
-
Notifications
You must be signed in to change notification settings - Fork 215
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Cannot activate https with existing certificates #2681
Comments
A Lets Encrypt certificate is not a custom certificate and may not be used as a custom certificate. So what you are trying to do is not possible. You cannot use an existing Lets Encrypt certificate to encrypt another site... there can only be one. Possibly you could let the Nextcloud snap encryption service retrieve a certificate for a sub domain like You either need a wildcard certificate for your domain, in which case you may disable the Nextcloud snap Lets Encrypt service completely as your domain will be encrypted by an api. Sorry to have to say this again, but this is certainly not a Nextcloud snap issue and not a "Nextcloud snap encryption service issue" either. That's how Lets Encrypt works. Now I'm not going to point you to the Wiki this time around... and I'll stand to being corrected any time. |
Assuming you will close the issue when you see fit? |
That's not necessarily true. Perhaps @coyoteconscious moved domains. However, I do question why. @coyoteconscious, if you have a domain name pointing to the snap, why not just let the snap take care of your certs via Let's Encrypt? Even if this command worked, this cert will expire in a few months and you'll have to run this command again with new certs that you obtain yourself. The snap could be doing that for you. Regarding why this is failing, can you take a peek inside the |
I think this may be related, but I have a similar challenge to activate https with an existing tailscale generated cert. In this case I have the |
Hey @rik-shaw, that's a valid question, but unrelated to this one. Mind opening a new issue? |
will do. Thanks for the quick reply. |
Hello I have having a very similar issue but a little different. I have a wildcard certificate that I am trying to use nextcloud-snap to install from my haproxy/certbot box. I want to get away from SSL termination because the overhead is pretty crazy and ssl verification on things like email smtp are starting to not like that my backend switches to http or check verify none at the proxy. I have cron scp copying the certs to my docker, exchange server, nextcloud, etc VM's -- I am getting the same error as OP, and there is nothing in the directory, it doesn't even exist and is write only here is my output:
|
@mikekay1, thanks for your request. |
Thanks for following up -- I have resolved the issue with copying to the folder certs for nextcloud certs which wasnt empty just needed sudo su, then altering permissions, then rerunning command. Thanks! |
Describe the bug
When I attempt to enable https using my existing Lets-Encrypt certificates, which work without issue on my other sites, I get an error saying that the installed private key does not exist or is empty.
To Reproduce
Steps to reproduce the behavior:
2: Tell Nextcloud Snap to enable https
3: This error occurs:
Expected behavior
I expect the certificates to be installed correctly and https to be enabled.
OS/snapd/snap version
What OS and version are you running? Please also include the output of the
following commands:
Ubuntu 23.10
nextcloud 27.1.6snap1 40228 latest/stable nextcloud✓ -
snap 2.61.1
snapd 2.61.1
series 16
ubuntu 23.10
kernel 6.5.0-17-generic
Logs
snap-nextcloud-ssl-error.txt
The text was updated successfully, but these errors were encountered: