Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Register account Error: {"type":"urn:acme:error:badNonce","detail":"JWS has no anti-replay nonce","status": 400} #1430

Closed
etanol85 opened this issue Mar 21, 2018 · 0 comments
Closed

Register account Error: {"type":"urn:acme:error:badNonce","detail":"JWS has no anti-replay nonce","status": 400} #1430

etanol85 opened this issue Mar 21, 2018 · 0 comments

Comments

@etanol85
Copy link

etanol85 commented Mar 21, 2018
edited by Neilpang

I'm a noob on this so probably I am overseeing something obvious but I haven't found what I am doing wrong. This is the -debug 2 output

acme.sh --issue -d albertronic.com  -w /webb/albertronic --debug 2
[Wed Mar 21 17:56:20 CET 2018] Lets find script dir.
[Wed Mar 21 17:56:20 CET 2018] _SCRIPT_='/Users/aryan/.acme.sh/acme.sh'
[Wed Mar 21 17:56:20 CET 2018] _script='/Users/aryan/.acme.sh/acme.sh'
[Wed Mar 21 17:56:20 CET 2018] _script_home='/Users/aryan/.acme.sh'
[Wed Mar 21 17:56:20 CET 2018] Using config home:/Users/aryan/.acme.sh
[Wed Mar 21 17:56:20 CET 2018] LE_WORKING_DIR='/Users/aryan/.acme.sh'
https://github.com/Neilpang/acme.sh
v2.7.8
[Wed Mar 21 17:56:20 CET 2018] _main_domain='albertronic.com'
[Wed Mar 21 17:56:20 CET 2018] _alt_domains='no'
[Wed Mar 21 17:56:20 CET 2018] Using config home:/Users/aryan/.acme.sh
[Wed Mar 21 17:56:20 CET 2018] ACME_DIRECTORY='https://acme-v01.api.letsencrypt.org/directory'
[Wed Mar 21 17:56:20 CET 2018] _ACME_SERVER_HOST='acme-v01.api.letsencrypt.org'
[Wed Mar 21 17:56:20 CET 2018] DOMAIN_PATH='/Users/aryan/.acme.sh/albertronic.com'
[Wed Mar 21 17:56:20 CET 2018] '/webb/albertronic' does not contain 'dns'
[Wed Mar 21 17:56:20 CET 2018] Using ACME_DIRECTORY: https://acme-v01.api.letsencrypt.org/directory
[Wed Mar 21 17:56:20 CET 2018] _init api for server: https://acme-v01.api.letsencrypt.org/directory
[Wed Mar 21 17:56:20 CET 2018] GET
[Wed Mar 21 17:56:21 CET 2018] url='https://acme-v01.api.letsencrypt.org/directory'
[Wed Mar 21 17:56:21 CET 2018] timeout=
[Wed Mar 21 17:56:21 CET 2018] _CURL='curl -L --silent --dump-header /Users/aryan/.acme.sh/http.header  --trace-ascii /tmp/acme.sh.QJRwlPcg  -g '
[Wed Mar 21 17:56:21 CET 2018] ret='0'
[Wed Mar 21 17:56:21 CET 2018] response='{
  "key-change": "https://acme-v01.api.letsencrypt.org/acme/key-change",
  "meta": {
    "terms-of-service": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf"
  },
  "new-authz": "https://acme-v01.api.letsencrypt.org/acme/new-authz",
  "new-cert": "https://acme-v01.api.letsencrypt.org/acme/new-cert",
  "new-reg": "https://acme-v01.api.letsencrypt.org/acme/new-reg",
  "revoke-cert": "https://acme-v01.api.letsencrypt.org/acme/revoke-cert",
  "uTX1WTQj50s": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417"
}'
[Wed Mar 21 17:56:22 CET 2018] ACME_KEY_CHANGE='https://acme-v01.api.letsencrypt.org/acme/key-change'
[Wed Mar 21 17:56:22 CET 2018] ACME_NEW_AUTHZ='https://acme-v01.api.letsencrypt.org/acme/new-authz'
[Wed Mar 21 17:56:22 CET 2018] ACME_NEW_ORDER='https://acme-v01.api.letsencrypt.org/acme/new-cert'
[Wed Mar 21 17:56:22 CET 2018] ACME_NEW_ACCOUNT='https://acme-v01.api.letsencrypt.org/acme/new-reg'
[Wed Mar 21 17:56:22 CET 2018] ACME_REVOKE_CERT='https://acme-v01.api.letsencrypt.org/acme/revoke-cert'
[Wed Mar 21 17:56:22 CET 2018] ACME_AGREEMENT='https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf'
[Wed Mar 21 17:56:22 CET 2018] ACME_NEW_NONCE
[Wed Mar 21 17:56:22 CET 2018] ACME_VERSION
[Wed Mar 21 17:56:22 CET 2018] Le_NextRenewTime
[Wed Mar 21 17:56:23 CET 2018] _on_before_issue
[Wed Mar 21 17:56:23 CET 2018] _chk_main_domain='albertronic.com'
[Wed Mar 21 17:56:23 CET 2018] _chk_alt_domains
[Wed Mar 21 17:56:23 CET 2018] '/webb/albertronic' does not contain 'no'
[Wed Mar 21 17:56:23 CET 2018] Le_LocalAddress
[Wed Mar 21 17:56:23 CET 2018] d='albertronic.com'
[Wed Mar 21 17:56:23 CET 2018] Check for domain='albertronic.com'
[Wed Mar 21 17:56:23 CET 2018] _currentRoot='/webb/albertronic'
[Wed Mar 21 17:56:23 CET 2018] d
[Wed Mar 21 17:56:23 CET 2018] '/webb/albertronic' does not contain 'apache'
[Wed Mar 21 17:56:23 CET 2018] config file is empty, can not read CA_KEY_HASH
[Wed Mar 21 17:56:23 CET 2018] _saved_account_key_hash
[Wed Mar 21 17:56:23 CET 2018] Using config home:/Users/aryan/.acme.sh
[Wed Mar 21 17:56:23 CET 2018] ACME_DIRECTORY='https://acme-v01.api.letsencrypt.org/directory'
[Wed Mar 21 17:56:23 CET 2018] _ACME_SERVER_HOST='acme-v01.api.letsencrypt.org'
[Wed Mar 21 17:56:23 CET 2018] _init api for server: https://acme-v01.api.letsencrypt.org/directory
[Wed Mar 21 17:56:23 CET 2018] RSA key
[Wed Mar 21 17:56:24 CET 2018] Registering account
[Wed Mar 21 17:56:24 CET 2018] url='https://acme-v01.api.letsencrypt.org/acme/new-reg'
[Wed Mar 21 17:56:24 CET 2018] payload='{"resource": "new-reg", "terms-of-service-agreed": true, "agreement": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf"}'
[Wed Mar 21 17:56:24 CET 2018] Use cached jwk for file: /Users/aryan/.acme.sh/ca/acme-v01.api.letsencrypt.org/account.key
[Wed Mar 21 17:56:24 CET 2018] Get nonce. ACME_DIRECTORY='https://acme-v01.api.letsencrypt.org/directory'
[Wed Mar 21 17:56:24 CET 2018] GET
[Wed Mar 21 17:56:24 CET 2018] url='https://acme-v01.api.letsencrypt.org/directory'
[Wed Mar 21 17:56:24 CET 2018] timeout=
[Wed Mar 21 17:56:24 CET 2018] _CURL='curl -L --silent --dump-header /Users/aryan/.acme.sh/http.header  --trace-ascii /tmp/acme.sh.GyQVWuvs  -g '
[Wed Mar 21 17:56:25 CET 2018] ret='0'
[Wed Mar 21 17:56:25 CET 2018] _headers='HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json
Content-Length: 562
Replay-Nonce: KiMZ-WfOqj0mvV8tB9Nkc-PNHuAcaFMuHtkJUhB2x40
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
Expires: Wed, 21 Mar 2018 16:56:23 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 21 Mar 2018 16:56:23 GMT
Connection: keep-alive
'
cut: stdin: Illegal byte sequence
[Wed Mar 21 17:56:25 CET 2018] _CACHED_NONCE
[Wed Mar 21 17:56:25 CET 2018] nonce
[Wed Mar 21 17:56:26 CET 2018] POST
[Wed Mar 21 17:56:26 CET 2018] _post_url='https://acme-v01.api.letsencrypt.org/acme/new-reg'
[Wed Mar 21 17:56:26 CET 2018] body='{"header": {"alg": "RS256", "jwk": {"e": "AQAB", "kty": "RSA", "n": "xIhQPnvbTNtmhxZQw3_i_Bx2DNllGgmogBq6dwVoeJkDdipqtbzt6Y7I6tS-NwUQ9MYDCwwFH3GbbEuWhNGpj2YBEBPEYM7bx_IuwvcNfNsAJSJNmU7nHDmJAFA1D8ZUFP5E9WNoa7oICxJHuvu4zH6GB7vLu0m8C-UzqW8rtxeZH-CATOf14RRZkarzn7W9iubAMFzgoAvr1HOJGGB99QnWU53i5gMPugA6uBRA1b97d4kCQcrfhOl28EXpXOr5y4joKaz8zC_SDWt5eK0A5qPEZFpzn24ZEKANc_4LLzXlVrNPWHopAtDioBw7kEfLsy3IFmqZ-zJUnz1CkzEaqQ"}}, "protected": "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", "payload": "eyJyZXNvdXJjZSI6ICJuZXctcmVnIiwgInRlcm1zLW9mLXNlcnZpY2UtYWdyZWVkIjogdHJ1ZSwgImFncmVlbWVudCI6ICJodHRwczovL2xldHNlbmNyeXB0Lm9yZy9kb2N1bWVudHMvTEUtU0EtdjEuMi1Ob3ZlbWJlci0xNS0yMDE3LnBkZiJ9", "signature": "JobNOfUTgVP5eS5dWWauFCRwsHGlC4yoNbWxK8jGX37Ic1dGVS0CPPZRP2Dvg_nuQynSQvxLSYWCViEJsAPScRnwsmyhX7RKVb1P-zgzmQtI2bfKoMH8OxbCD4s5Fp08gGJDf5PXAxPFEcspfPxiXd9dSTZUc53mCVOHtGoKeoq3R_7xe07nBJb4mGRRV4990ubfTJftqaiJXPNDOtnOxjiUReHUQxbzotgA0fyLMuynQFKGI5I0e3k3urtjYeol9HXxLncYCXE9vVUvPZBT0UDOL5br0bCjluY_4r0zg-PqT5qqhAvxNZg456dqdxci-dTyNuS5xuAK-2JjEqRPMw"}'
[Wed Mar 21 17:56:26 CET 2018] _postContentType
[Wed Mar 21 17:56:26 CET 2018] _CURL='curl -L --silent --dump-header /Users/aryan/.acme.sh/http.header  --trace-ascii /tmp/acme.sh.Pil2pevG  -g '
[Wed Mar 21 17:56:27 CET 2018] _ret='0'
[Wed Mar 21 17:56:27 CET 2018] original='{
  "type": "urn:acme:error:badNonce",
  "detail": "JWS has no anti-replay nonce",
  "status": 400
}'
[Wed Mar 21 17:56:27 CET 2018] responseHeaders='HTTP/1.1 100 Continue
Expires: Wed, 21 Mar 2018 16:56:25 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: application/problem+json
Content-Length: 100
Replay-Nonce: UtTF3-RfdZIoydNzsTnItm_dqwJRI8bOMM8YKcx4dB0
Expires: Wed, 21 Mar 2018 16:56:25 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 21 Mar 2018 16:56:25 GMT
Connection: close
'
[Wed Mar 21 17:56:27 CET 2018] response='{"type":"urn:acme:error:badNonce","detail":"JWS has no anti-replay nonce","status": 400}'
[Wed Mar 21 17:56:27 CET 2018] code='400'
cut: stdin: Illegal byte sequence
[Wed Mar 21 17:56:27 CET 2018] Register account Error: {"type":"urn:acme:error:badNonce","detail":"JWS has no anti-replay nonce","status": 400}
[Wed Mar 21 17:56:27 CET 2018] _on_issue_err
[Wed Mar 21 17:56:27 CET 2018] Please check log file for more details: /Users/aryan/.acme.sh/acme.sh.log
[Wed Mar 21 17:56:27 CET 2018] _chk_vlist
[Wed Mar 21 17:56:28 CET 2018] socat doesn't exists.
[Wed Mar 21 17:56:28 CET 2018] Diagnosis versions: 
openssl:openssl
OpenSSL 1.0.2d 9 Jul 2015
apache:
apache doesn't exists.
nginx:
nginx doesn't exists.
socat:
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@etanol85