starred/modoboa-modoboa
1
0
Fork 0
mirror of https://github.com/modoboa/modoboa.git synced 2026-04-26 01:16:01 +03:00
Code Issues 60 Projects Releases 10 Packages Wiki Activity

[GH-ISSUE #1674] Certificate for api.modoboa.org expired #1317

New issue
Closed
opened 2026-02-27 11:16:29 +03:00 by kerem · 6 comments
kerem commented 2026-02-27 11:16:29 +03:00
Owner
Copy link

Originally created by @tschuettler on GitHub (Feb 12, 2019).
Original GitHub issue: https://github.com/modoboa/modoboa/issues/1674

Steps to reproduce

cron job manage.py communicate_with_public_api fails with CommandError: Failed to retrieve versions from the API.

Current behavior

* SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384
* ALPN, server accepted to use http/1.1
* Server certificate:
*  subject: CN=api.modoboa.org
*  start date: Nov 13 22:00:15 2018 GMT
*  expire date: Feb 11 22:00:15 2019 GMT
*  issuer: C=US; O=Let's Encrypt; CN=Let's Encrypt Authority X3
*  SSL certificate verify result: certificate has expired (10), continuing anyway.

Expected behavior

valid certificate

Originally created by @tschuettler on GitHub (Feb 12, 2019). Original GitHub issue: https://github.com/modoboa/modoboa/issues/1674 # Steps to reproduce cron job `manage.py communicate_with_public_api` fails with `CommandError: Failed to retrieve versions from the API.` # Current behavior ``` * SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384 * ALPN, server accepted to use http/1.1 * Server certificate: * subject: CN=api.modoboa.org * start date: Nov 13 22:00:15 2018 GMT * expire date: Feb 11 22:00:15 2019 GMT * issuer: C=US; O=Let's Encrypt; CN=Let's Encrypt Authority X3 * SSL certificate verify result: certificate has expired (10), continuing anyway. ``` # Expected behavior valid certificate
kerem closed this issue 2026-02-27 11:16:29 +03:00
kerem commented 2026-02-27 11:16:30 +03:00
Author
Owner
Copy link

@WLR86 commented on GitHub (Feb 12, 2019):

This is what happens when relying on certbot... Been there, done that. Certbot doesn't automatically renew certs, it just FAILS to do so, and at the end of the day, you have to troubleshoot the issue, fix it, and renew your certs MANUALLY.

Or use acmetool, and forget about it, it just does the job.
(Sorry for this rant, but I wasted so much time using certbot I can't take it anymore)

<!-- gh-comment-id:462711145 --> @WLR86 commented on GitHub (Feb 12, 2019): This is what happens when relying on certbot... Been there, done that. Certbot doesn't automatically renew certs, it just FAILS to do so, and at the end of the day, you have to troubleshoot the issue, fix it, and renew your certs MANUALLY. Or use acmetool, and forget about it, it just does the job. (Sorry for this rant, but I wasted so much time using certbot I can't take it anymore)
kerem commented 2026-02-27 11:16:30 +03:00
Author
Owner
Copy link

@tonioo commented on GitHub (Feb 25, 2019):

Actually, the certificate renew worked but nginx reloading failed... Need to figure out why.

<!-- gh-comment-id:466950380 --> @tonioo commented on GitHub (Feb 25, 2019): Actually, the certificate renew worked but nginx reloading failed... Need to figure out why.
kerem commented 2026-02-27 11:16:30 +03:00
Author
Owner
Copy link

@WLR86 commented on GitHub (Jul 26, 2019):

Once again... Is there any known workaround ?

<!-- gh-comment-id:515467491 --> @WLR86 commented on GitHub (Jul 26, 2019): Once again... Is there any known workaround ?
kerem commented 2026-02-27 11:16:30 +03:00
Author
Owner
Copy link

@WLR86 commented on GitHub (Jul 29, 2019):

Ok I thought I could redirect the error to /dev/null :

/etc/cron.d/modoboa
[...]
# Public API communication
0       *       *       *       *       root    $PYTHON $INSTANCE/manage.py communicate_with_public_api 2>/dev/null
[...]

So far so good. Obviously the api call still fails, but at east I don't get spammed when it does.

<!-- gh-comment-id:515904356 --> @WLR86 commented on GitHub (Jul 29, 2019): Ok I thought I could redirect the error to /dev/null : ``` /etc/cron.d/modoboa [...] # Public API communication 0 * * * * root $PYTHON $INSTANCE/manage.py communicate_with_public_api 2>/dev/null [...] ``` So far so good. Obviously the api call still fails, but at east I don't get spammed when it does.
kerem commented 2026-02-27 11:16:30 +03:00
Author
Owner
Copy link

@Arvedui commented on GitHub (Oct 13, 2019):

Here is you quarterly reminder that the certificate auto renewal setup for api.modoboa.org is broken.

<!-- gh-comment-id:541405029 --> @Arvedui commented on GitHub (Oct 13, 2019): Here is you quarterly reminder that the certificate auto renewal setup for api.modoboa.org is broken.
kerem commented 2026-02-27 11:16:30 +03:00
Author
Owner
Copy link

@tonioo commented on GitHub (Oct 13, 2019):

@Arvedui it's fixed and I hope it's the last time you report this ;)

<!-- gh-comment-id:541412353 --> @tonioo commented on GitHub (Oct 13, 2019): @Arvedui it's fixed and I hope it's the last time you report this ;)
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
fix/sievefilters-allow-email-in-rule-name
dependabot/npm_and_yarn/frontend/axios-1.15.0
translations_04c0b653215cb5fa48ab101eae1a1917_ja_JP
translations_5d93982e9fd6dab991db4faf93ce9ded_ja_JP
fix/login-issue-3995
fix/sievefilters-issues
add-vitepress-openapi
2974-dmarc-empty-email
2.3.x
updated-doc-2.3.0
feature/OIDC
delete-all-alarms
translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_af_ZA
translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_ar
translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_ca
1.x
translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_sk
translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_tr
translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_es_ES
translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_uk
translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_zh_CN
translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_de_DE
translations_modoboa-admin-locale-en-lc-messages-djangojs-po--master_da_DK
1.8.x
1.7.x
1.6.x
1.4.x
1.3.x
1.2.x
2.8.2
2.8.1
2.8.0
2.7.2
2.7.1
2.7.0
2.6.5
2.6.4
2.6.3
2.6.2
2.6.1
2.6.0
2.5.1
2.5.0
2.4.11
2.4.10
2.4.9
2.4.8
2.4.7
2.4.6
2.4.5
2.4.4
2.4.3
2.4.2
2.4.1
2.4.0
2.3.6
2.3.5
2.3.4
2.3.3
2.3.2
2.3.1
2.3.0
2.3.0-beta.4
2.3.0-beta.3
2.3.0-beta.2
2.3.0-beta.1
2.2.4
2.2.3
2.2.2
2.2.1
2.2.0
2.1.2
2.1.1
2.1.0
2.0.5
2.0.4
2.0.3
2.0.2
2.0.1
2.0.0
2.0.0-beta.3
2.0.0-beta.2
2.0.0-beta.1
1.17.0
1.16.1
1.16.0
1.15.0
1.14.0
1.13.1
1.13.0
1.12.2
1.12.1
1.12.0
1.11.1
1.11.0
1.10.7
1.10.6
1.10.5
1.10.4
1.10.3
1.10.2
1.10.1
1.10.0
1.9.1
1.9.0
1.8.3
1.8.2
1.8.1
1.8.0
1.7.4
1.7.3
1.7.2
1.7.1
1.7.0
1.6.3
1.6.2
1.6.1
1.6.0
1.5.3
1.5.2
1.5.1
1.5.0
1.4.5
1.4.4
1.4.3
1.4.2
1.4.1
1.4.0
1.3.5
1.3.4
1.2.2
1.3.3
1.3.2
1.3.1
1.3.0
1.2.1
1.2.0
1.2.0-rc2
1.2.0-rc1
1.1.7
1.1.6
1.1.5
1.1.4
1.1.3
1.1.2
1.1.1
1.1.0
1.0.1
1.0.0
0.9.5
0.9.4
0.9.3
0.9.2
0.9.1
0.9
0.8.8
0.8.7
0.8.6.1
0.8.6
0.8.5
0.8.4
0.8.3
0.8.3-rc1
0.8.2
0.8.1
0.8
0.8-rc2
0.8-rc1
0.7.2
0.7.1
0.7
0.6.1
0.6
0.5
0.3
0.2
0.1
Labels
Clear labels   
bug

   
bug

   
dependencies

   
design

   
documentation

   
duplicate

   
enhancement

   
enhancement

   
enhancement

   
feedback-needed

   
help-needed

   
help-needed

   
installer

   
invalid

   
looking-for-sponsors

   
modoboa-contacts

   
new-ui

   
new-ui

   
pr

   
pull-request

Mirrored from GitHub Pull Request

  
pyconfr

   
python

   
question

   
security

   
stale

   
webmail

   
wontfix
No labels
bug
bug
dependencies
design
documentation
duplicate
enhancement
enhancement
enhancement
feedback-needed
help-needed
help-needed
installer
invalid
looking-for-sponsors
modoboa-contacts
new-ui
new-ui
pr
pull-request
pyconfr
python
question
security
stale
webmail
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/modoboa-modoboa#1317
No description provided.