Comments (6)
Thank you for the feedback. I will close the issue for now. Feel free to reopen it when necessary.
from acme4j.
Oh wow i used it because of the documentation:
Then i think so nobody else does the same mistake like i did the documentation should be updated with a warning or a tip to adress this issue.
from acme4j.
Your code looks okay on the first sight.
Let's Encrypt has recently changed its issuer certificate. My suspicion is that your server still delivers the old certificate chain along with your certificate, so the issuer of your certificate does not match.
Please check the certificate in your browser. The issuer of your certificate must match the next certificate in your certificate chain. If you use Let's Encrypt, the issuer should be named "R3".
from acme4j.
Yeah the software which uses the certificate isnt from me. I only generate certificate for it. I will open there also an ticket and will link this issue to it. Thank you @shred.
from acme4j.
Sure. Btw i also checked the cert seems like its all ok with it and you have right: only the web server does something wrong...
from acme4j.
Ahhh... You are using the Let's Encrypt STAGING server. It does not provide certificates that are usable in a browser.
For production, you need to use the production server of Let's Encrypt.
In the example it is Session session = new Session("acme://letsencrypt.org");
from acme4j.
Related Issues (20)
- Did you find any provider for RFC8823 support / email-reply-00 challenges? HOT 4
- The challenge status is always "INVALID" HOT 5
- The challenge status was always "INVALID" HOT 13
- http://${domain}/.well-known/acme-challenge/${token}
- acme4j example is creating zero- length crt files HOT 10
- preferred-chain attribute, for alternate chains HOT 2
- Can only parse traditional files HOT 2
- EAB HMAC keys with arbitrary lengths HOT 5
- CVE-2023-33201 from Bouncy Castle HOT 8
- add utils to do pre validation or help
- How to check if certificate needs renewal without ordering a new one? HOT 8
- Is there a way to keep txt unchanged and verify twice? HOT 2
- New account registration HOT 1
- Bouncy Castel dependency? HOT 9
- Allow to pass query parameters in directory URL HOT 2
- Provide example showing how to save and load existing certificates HOT 2
- AcmeJsonResource#update throws AcmeRetryAfterException even if resource is ready HOT 3
- Abstract away certificate renewal HOT 6
- response is not reading correctly HOT 3
- Java 22 Support HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from acme4j.