Get started
We are having lots of fun on Discord. Come and join us!
Star on GitHub 45.1K Get started
Back

TLS cert ACME challenge fails for custom domain on project

  • 0
  • Self Hosted
  • General
View on Discord
AndrewKing
7 Jan, 2025, 11:37

Hi All,

Probably some traefik/domain issue, but I cannot figure out the problem for days, and any help would be much appreciated.

I have 2 domains, let's say domain1.dev and domain2.com.

I installed Appwrite with Coolify on appwrite.domain1.dev, and all works fine, Appwrite is running on https, no problem at all.

I've created a new project for domain2.com, and tries to set appwrite.domain2.com for the project. On domain2.com I'm hosting a deno+fresh application. CNAME record seems fine, Appwrite shows the subdomain is verified, but the certificate generation always fails with this error during the ACME challenge:

TypeScript
Certbot failed to authenticate some domains (authenticator: webroot). The Certificate Authority reported these problems:
  Domain: appwrite.domain2.com
  Type:   unauthorized
  Detail: <SERVERIP>: Invalid response from http://appwrite.domain2.com/.well-known/acme-challenge/CyShOfnPsridRYNE0aGP2kXhSTjBcEdUjgoAMGo8bSY: 404

pinging appwrite.domain2.com retrieves answer back from appwrite.domain1.dev, so CNAME seems okay. However, accessing http://appwrite.domain2.com in the browser gives me back a 404, also http://appwrite.domain2.com/versions does the same.

I've checked that port 80 and 443 are available on the Appwrite instance. I don't use Cloudfare or any other tunnels, just simple DNS stuff.

I have a feeling, that it always redirects to https, or it can be some traefik issue, or Coolify-related thing, but I just cannot figure out the problem.

TL;DR
Issue: TLS certificate ACME challenge fails for custom domain on project. Summary: Developer is trying to set up a new project on a custom domain but encounters an error during the ACME challenge for certificate generation. The error indicates an unauthorized response during the challenge. The CNAME records seem fine, but accessing the domain in the browser returns a 404 error. It's suspected the issue might be related to redirection to HTTPS or possibly a Traefik or Coolify problem. Solution: Ensure that the domain is correctly pointing to the intended server and that port 80 and 443 are available. Additionally, check for any redirection issues to HTTPS
Reply

Reply to this thread by joining our Discord

Reply on Discord

Recommended threads

Need support?

Join our Discord

Get community support by joining our Discord server.

Join Discord

Get premium support

Join Appwrite Pro and get email support from our team.

Learn more