-
-
Notifications
You must be signed in to change notification settings - Fork 986
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
--dns flag ignored after core refactor #730
Comments
Now you have to explicitly exclude |
On this note, I think it might be good to disable those automatically when using the DNS challenge. They seem mutually exclusive in 99.9% of use cases. |
Before my pr it's was not possible to use DNS01 (for wildcard) and HTTP01. I think we need to be able to mix all challenges. I have removed the limitation for that. |
To clarify: I'm OK with that -- but I am curious if anyone is using both DNS challenges and the HTTP challenge in the same command. (Caddy treats them mutually exclusively, with no complaints -- so I am interested in seeing if we're missing something.) |
Traefik treats them mutually exclusively also but we have users who want that : traefik/traefik#3378 |
@ldez Thanks for the quick reply, and explaining the correct usage with the latest code. It's pretty nifty that you can mix DNS and HTTP-based challenges with lego now. Perhaps for backwards compatibility, it would be better to continue interpreting the |
The changes performs in #700 are breaking, it's the goal of this PR. I recommend to use the binaries or the docker images that we produce instead of building from the master. |
I will spend some time to refactor the way to manage the challenges before the v2.0 release. |
Just got the latest code (42941cc), and tried to run the lego command I usually run to update a cert via dns challenge, but it failed with a bunch of errors related to the tls solver (appearing to ignore the
--dns
flag). I rolled back to the previous commit (4e842a5), and everything worked without errors as normal.This is the command I ran (with a couple
example.com
domain names in place of the dozen or so real domain names I used):And this is the output from the failure with the latest code:
The text was updated successfully, but these errors were encountered: