Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Error when requesting ceritficate... #2

Closed
taylorotwell opened this issue Dec 5, 2015 · 11 comments
Closed

Error when requesting ceritficate... #2

taylorotwell opened this issue Dec 5, 2015 · 11 comments

Comments

@taylorotwell
Copy link

When requesting a certificate for a domain... I get through all steps successfully, even challenges; however, I get a curl error when requesting the actual certificate:

  + Requesting certificate...
curl: (22) The requested URL returned error: 403 Forbidden
  + Done!
@taylorotwell
Copy link
Author

Also curious how to use the staging setup for LetsEncrypt so I can issue test certificates. Changing the CA to the typical "https://acme-staging.api.letsencrypt.org/directory" I use with the official LetsEncrypt client results in 404s.

@lukas2511
Copy link
Member

Yea this still is missing some error handling.
To use the staging environment you should set the CA to "https://acme-staging.api.letsencrypt.org", without the "/directory" at the end, it should work.

@taylorotwell
Copy link
Author

Yeah I gave that shot when I was experimenting and that turned the 404 into a 403 Forbidden:

  + Generating private key...
  + Generating signing request...
  + Requesting challenge for verbler.com...
curl: (22) The requested URL returned error: 403 Forbidden

@lukas2511
Copy link
Member

I'm not sure what's going on there, maybe it requires the usage of a different agreement url on registration.

@taylorotwell
Copy link
Author

Error after latest commits with https://acme-staging.api.letsencrypt.org as CA

  + Requesting challenge for verbler.com...
  + ERROR: An error occured while sending post-request to https://acme-staging.api.letsencrypt.org/acme/new-authz (curl: (22) The requested URL returned error: 403 Forbidden)

@taylorotwell
Copy link
Author

Is there a way for me to receive the full error response body? Would that contain anymore info?

@taylorotwell
Copy link
Author

Modified the script a bit and got the real error:

  • Error: Can't retrieve challenges ({"type":"urn:acme:error:unauthorized","detail":"No registration exists matching provided key","status":403})

@taylorotwell
Copy link
Author

Resolved by deleting my privatekey.pem and letting it regenerate.

@ibukanov ibukanov mentioned this issue Mar 7, 2016
Closed
@lukas2511 lukas2511 mentioned this issue Mar 12, 2016
Closed
@connaryscott
Copy link

I am stuck here here as well.

{"type":"urn:acme:error:unauthorized","detail":"No registration exists matching provided key","status":403}

Continually got this error until i ran it with just -c, then I got:
Then i got this:

{"type":"urn:acme:error:malformed","detail":"Provided agreement URL [https://testca.kurz.pw/terms/v1] does not match current agreement URL [https://letsencrypt.org/documents/LE-SA-v1.0.1-July-27-2015.pdf]","status":400}

After setting my LICENSE to that value, which was a complete guess on my part, i then got that same 403 error....

@connaryscott
Copy link

I was able to get around it by just using the -c option and removing my private key which I believe others did as well. I am moving forward now.

@sztyler
Copy link

sztyler commented Apr 3, 2016

Is there any solution to use my own private key? -Its really annoying -I have to use one of my private keys due to HPKP otherwise I cannot switch my certificate....

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@lukas2511 @taylorotwell @connaryscott @sztyler