New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
link to let's encrypt certificates doesn't work #67
Comments
You can work around that by copy and paste the certificate and the key. |
@MohamedElashri yes and you can be in trouble every time the certificate is out of date I have already done that, I more looking for a real solution now. |
I have the same issue. I don't really sure if the certificate belongs as plaintext into the app config. |
From where to where? |
Copy the content of Or copy the path to |
why can't we just copy the path so we don't have to copy and paste by hand at each renewal ?! |
You can do that now |
Potential solution for packagers: give |
solved in #89 |
I don't understand why you want to link this certs. It's only useful when we want to access the AdGuard Home admin interface on a specific port, but on Yunohost, you don't want that because you can already access it on a reverse proxy (via yourdomain.tld) |
It is usually because people want to use AdGuard home DoH/DoT feature, so they need to enable encryption |
DOH works out of the box. You can use https://youradguarddomain.tld/dns-query or tls://youradguarddomain.tld (you don't need to check the box "Enable Encryption (HTTPS, DNS-over-HTTPS, and DNS-over-TLS)") I tried with mine with https://github.com/curl/doh and with firefox dns conf |
It doesn't let you generate configuration files, which is what you need for system-wide DNS in Mac and iOS/iPad. |
yes when using adguardhome as upstream DOH DNS for others adguardhome(s) you need to correctly activate encryption for adguardhome. I did run into troubles when the certificate runs out and adguardhome had a manually copied certificates. |
I think this answer can resolve your problem : #101 (comment) |
Context
Hardware: VPS bought online
YunoHost version: last stable
I have access to my server : Through SSH | through the webadmin
Are you in a special context or did you perform some particular tweaking on your YunoHost instance ? : no
Description of my issue
Describe the bug
I have a working installation of adguard home and I initially copy / paste the let’s encrypt certificates into the encryption setup of adguardhome.
Now the certificate expired and I am trying to make it permanent and elegant configuration such as a link file to certificate so it will be still valid after being updated by certbot.
so I located the certificates into /etc/yunohost/certs/my.domain.com/crt.pem and key.pem
I first try to declare such path into adguardhome but got an error message from adguardhome “permission denied”
Then I created two link files into /var/www/adguardhome and change their ownership (chown -h) in accordance of folder existing ownership.
But still adguardhome “permission denied”
Expected behavior
Adguardhome shall be running with root user or similar and it shall therfor be able to read those files.
The text was updated successfully, but these errors were encountered: