-
-
Notifications
You must be signed in to change notification settings - Fork 90
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
acme4j 2.0 on maven central incompatible with recent pebble #59
Comments
BTW: Thank you for this great library! I tend to speak about issues too quickly without honoring the good job people like you do. 👍 |
Yes... This is related to letsencrypt/pebble@65f06474. Unfortunately, Let's Encrypt staging and production servers do not incorporate this change yet. I had the choice to maintain Pebble support and break staging/production support, or vice versa. I decided to break Pebble in acme4j 2.0, for obvious reasons. acme4j 2.0 was built from the For the time being, if you need Pebble support, you'll have to build from I'm not happy with that solution myself, but I saw no other way to resolve this. I'm closing this bug because there is no other solution than to wait for Let's Encrypt. Thank you for your nice words! I really appreciate it. 😄 |
My intention with making Pebble more aggressive than staging/prod ACME v2 was to help provide a way for ACME clients to easily test if the upcoming changes will break their client. In retrospect I created a situation where you can either support Pebble, or the prod/staging environment. Not ideal! I'll probably revert the Pebble change today and will think about this more carefully in the future. ACME4J wasn't the only client bit by this. Thanks for your patience/feedback folks. |
@shred Thank you, perfectly understandable! @cpu I can somewhat understand why you did this, but as you said, this is "not ideal" indeed... |
To keep everything self-contained, this issue is now fixed in Pebble with |
Thank you, @cpu. I have reverted commit 1987d95 and merged the I will revert the revert 😉 when staging and production is able to handle challenges without authorizations. |
It seems that the code published as stable 2.0 acme4j release on maven central contains code that is incompatible with the recent version of pebble, i.e. somewhat deprecated.
This also happened to me yesterday with my old 2.0-SNAPSHOT build, before the start of the official new ACMEv2 API at letsencrypt. However, updating to the most recent 2.0-SNAPSHOT based on your master branch fixed this issue.
Recent 2.0-SNAPSHOT builds do not suffer from this problem.
This is the stack trace when using the most recent pebble (based on master branch from letsencrypt repo) together with acme4j 2.0 from maven central:
The text was updated successfully, but these errors were encountered: