Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Challenge marked as invalid #70

Open
yamenarahman opened this issue Jan 24, 2018 · 9 comments
Open

Challenge marked as invalid #70

yamenarahman opened this issue Jan 24, 2018 · 9 comments
Labels
error messages

Comments

@yamenarahman
Copy link

I have a shared host with godaddy with multiple domains, I was able to generate a certificate successfully with one domain however when I run

php bin/acme issue --domains domain.com:www.domain.com --path /home/my-user/public_html/domain.com:/home/my-user/public_html/domain.com --server letsencrypt

I got this

Providing payload at http://domain.com/.well-known/acme-challenge/uEL7i6-Yv36qf2H5-U6AquxvJztONBlqlqal42eA9lo
    Providing payload at http://www.domain.com/.well-known/acme-challenge/5nigAHYUYuKbeccW1pVs0J4h-mQNVwca51ES5MrCIyo
Kelunik\Acme\AcmeException: Challenge marked as invalid! in /home/my-user/acme-client/vendor/kelunik/acme/lib/AcmeService.php:234
@kelunik
Copy link
Owner

kelunik commented Jan 24, 2018

This shouldn't usually happen. It means that Let's Encrypt couldn't verify the challenge successfully. Do you have multiple servers behind the domain maybe? Maybe www.domain.com/.well-known/acme-challenge/* gets redirected to domain.com/ instead of keeping the path?

@yamenarahman
Copy link
Author

I've got it to work!
The problem was with a CAA record in the DNS of this domain, when I removed this record it works fine.
Thanks for your response and your great work.

@kelunik
Copy link
Owner

kelunik commented Jan 24, 2018

Thanks for the feedback. I've just created kelunik/acme#30 to improve the error message.

@Ronaldo-Cruz-Bastos
Copy link

Hello friends!
I am getting the same message but I have no CAA record in my DNS ..

php bin/acme issue --domains mydomain.com:www.mydomain.com --path /home/mydomain/public_html:/home/mydomain/public_html --server letsencrypt

this is the message:

    Providing payload at http://mydomain.com/.well-known/acme-challenge/XfOJqzTTHm2zfu9N1T14oBtiUHvwel48MBcNJUykm-g
    Providing payload at http://mydomain.com/.well-known/acme-challenge/ihUednd1waRzrmWiO-qzi9tqNiEf7hkSSj2opXaITtA

Kelunik\Acme\AcmeException: Challenge marked as invalid! in /home/mydomain/acme-client/vendor/kelunik/acme/lib/AcmeService.php:234

Would you help me?

@kelunik kelunik reopened this Jun 6, 2018
@kelunik
Copy link
Owner

kelunik commented Jun 6, 2018

I'll see whether there is additional information contained in the response that I can expose.

@kelunik
Copy link
Owner

kelunik commented Jun 6, 2018

@Ronaldo-Cruz-Bastos I've released https://github.com/kelunik/acme-client/releases/tag/v0.3.0-beta.3, which should give a more helpful error message. Please test it and report back whether works. I haven't tested the code myself yet.

@Ronaldo-Cruz-Bastos
Copy link

@kelunik
Now displays the following message:
Kelunik\Acme\AcmeException: Challenge marked as invalid: Unknown error in /home/mydomain/acme-client/vendor/kelunik/acme/lib/AcmeService.php:246

@kelunik
Copy link
Owner

kelunik commented Jun 7, 2018

@Ronaldo-Cruz-Bastos Thanks for reporting, I kind of expected that it wouldn't work instantly. I'll push another release today in the evening if I don't forget.

@kelunik
Copy link
Owner

kelunik commented Jun 9, 2018

@Ronaldo-Cruz-Bastos I've published a new release that allows running with an environment variable to enable verbose logging. Please run your issue command prefixed with ACME_LOG=1 to set the environment variable. I'll need the latest response from the server to correct the code that builds the error message.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
error messages
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@kelunik @yamenarahman @Ronaldo-Cruz-Bastos