#3463: osgeo9 cert bot can't renew any certs
----------------------+----------------------------
Reporter: robe | Owner: sac-tickets@…
Type: task | Status: new
Priority: normal | Milestone: 2025 (robe)
Component: SysAdmin | Resolution:
Keywords: |
----------------------+----------------------------
Changes (by robe):
* summary: Getting notice that discourse.osgeo.org certificate expired Nov
8th => osgeo9 cert bot can't renew any certs
Old description:
Evidentally didn't renew I guess.
New description:
Okay looks more serious than discourse cause manually renewing on
osgeo9-nginx I'm getting a lot of errors
I do recall there was a change to OCSP stapling or some such thing. So
that is part of the issue. The osgeo6-buster one is just cause I guess we
forgot to update website config when we renamed the osgeo6 container.
{{{
Cannot extract OCSP URI from
/etc/letsencrypt/archive/2016.foss4g.org/cert10.pem
Cert is due for renewal, auto-renewing...
Error while running nginx -c /etc/nginx/nginx.conf -t.
nginx: [emerg] host not found in upstream "osgeo6-buster.lxd" in
/etc/nginx/sites-enabled/lists.osgeo.org:14
nginx: configuration file /etc/nginx/nginx.conf test failed
Could not choose appropriate plugin: The nginx plugin is not working;
there may be problems with your existing configuration.
The error was: MisconfigurationError('Error while running nginx -c
/etc/nginx/nginx.conf -t.\n\nnginx: [emerg] host not found in upstream
"osgeo6-buster.lxd" in /etc/nginx/sites-enabled/lists.osgeo.org:14\nnginx:
configuration file /etc/nginx/nginx.conf test failed\n')
Failed to renew certificate 2016.foss4g.org with error: The nginx plugin
is not working; there may be problems with your existing configuration.
The error was: MisconfigurationError('Error while running nginx -c
/etc/nginx/nginx.conf -t.\n\nnginx: [emerg] host not found in upstream
"osgeo6-buster.lxd" in /etc/nginx/sites-enabled/lists.osgeo.org:14\nnginx:
configuration file /etc/nginx/nginx.conf test failed\n')
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
- - -
Processing /etc/letsencrypt/renewal/2018.foss4g.org.conf
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
- - -
Cannot extract OCSP URI from
/etc/letsencrypt/archive/2018.foss4g.org/cert16.pem
Cert not yet due for renewal
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
- - -
Processing /etc/letsencrypt/renewal/adventure.osgeo.org.conf
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
- - -
Cannot extract OCSP URI from
/etc/letsencrypt/archive/adventure.osgeo.org/cert23.pem
Cert is due for renewal, auto-renewing...
Error while running nginx -c /etc/nginx/nginx.conf -t.
}}}
--
--
Ticket URL: <Making sure you're not a bot!;
OSGeo <Gter - OSGeo;
OSGeo committee and general foundation issue tracker.