[GH-ISSUE #172] tls = "letsencrypt" and acme-dns.service #68

New issue

Closed

opened 2026-03-13 15:38:54 +03:00 by kerem · 3 comments

kerem commented 2026-03-13 15:38:54 +03:00

Owner

Copy link

Originally created by @lateagain on GitHub (Jul 10, 2019).
Original GitHub issue: https://github.com/acme-dns/acme-dns/issues/172

Had a problem enabling ssl with tls = "letsencrypt" combined with the limited user service.

Followed the README to run as a service with user acme-dns and it only worked when run in the foreground. (could do with some logging for the certificate request).

Used lsof -p <pid of acme-dns> to see what the differences were.
The cwd for the service is "\" and it can't create the api-certs directory there.

Fixed by adding "WorkingDirectory=~" to the acme-dns.service file.

Originally created by @lateagain on GitHub (Jul 10, 2019). Original GitHub issue: https://github.com/acme-dns/acme-dns/issues/172 Had a problem enabling ssl with tls = "letsencrypt" combined with the limited user service. Followed the README to run as a service with user acme-dns and it only worked when run in the foreground. (could do with some logging for the certificate request). Used lsof -p \<pid of acme-dns\> to see what the differences were. The cwd for the service is "\\" and it can't create the api-certs directory there. Fixed by adding "WorkingDirectory=~" to the acme-dns.service file.

kerem 2026-03-13 15:38:54 +03:00

• closed this issue
• added the
  Documentation
  label

kerem commented 2026-03-13 15:39:10 +03:00

Author

Owner

Copy link

@joohoi commented on GitHub (Sep 3, 2019):

Good to hear that you got it fixed. Another option to handle this would be to define a full path to config.cfg acme_cache_dir. This could be documented better in the installation instructions and / or the config.cfg itself.

<!-- gh-comment-id:527464824 --> @joohoi commented on GitHub (Sep 3, 2019): Good to hear that you got it fixed. Another option to handle this would be to define a full path to `config.cfg` `acme_cache_dir`. This could be documented better in the installation instructions and / or the `config.cfg` itself.

kerem commented 2026-03-13 15:39:15 +03:00

Author

Owner

Copy link

@lateagain commented on GitHub (Sep 11, 2019):

I added a pull request (set working directory in the systemd service file) because with the default working directory the service can't create the "api-certs" directory for ssl certificate.

<!-- gh-comment-id:530486975 --> @lateagain commented on GitHub (Sep 11, 2019): I added a pull request (set working directory in the systemd service file) because with the default working directory the service can't create the "api-certs" directory for ssl certificate.

kerem commented 2026-03-13 15:39:20 +03:00

Author

Owner

Copy link

@joohoi commented on GitHub (Oct 20, 2019):

Closing as resolved

<!-- gh-comment-id:544292597 --> @joohoi commented on GitHub (Oct 20, 2019): Closing as resolved

kerem referenced this issue 2026-03-13 16:14:57 +03:00

[PR #68] [MERGED] README: add acme.sh and change Certbot hook URL #272

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

fix_dockerhub

dockerhub

readme2.0

goreleaser_action

refactoring

linter_update_config

update_deps_122

dependabot/go_modules/github.com/valyala/fasthttp-1.34.0

deps_bump

update_goreleaser

update_golint

deps_update

update_dockerfile

v2.0.2

v2.0.1

v2.0

v1.1

v1.0

v0.8

v0.7.2

v0.7.1

v0.7

v0.6

v0.5

v0.4

v0.3.2

v0.3.1

v0.3

v0.2

v0.1

Labels

Clear labels   

Documentation

  

Documentation

  

bug

  

enhancement

  

feature request

  

feature request

  

help wanted

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

security

  

security

  

testing

No labels

Documentation

Documentation

bug

enhancement

feature request

feature request

help wanted

pull-request

question

security

security

testing

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/acme-dns#68

No description provided.