starred/nginx-ui
1
0
Fork 0
mirror of https://github.com/0xJacky/nginx-ui.git synced 2026-04-25 08:45:58 +03:00
Code Issues 618 Projects Releases 10 Packages Wiki Activity

[GH-ISSUE #1523] DNS-01 Let's Encrypt request issue #6619

New issue
Closed
opened 2026-03-01 17:13:26 +03:00 by kerem · 2 comments
kerem commented 2026-03-01 17:13:26 +03:00
Owner
Copy link

Originally created by @astrdev on GitHub (Jan 14, 2026).
Original GitHub issue: https://github.com/0xJacky/nginx-ui/issues/1523

Describe the bug
Here, I want to create a Let's Encrypt cert for "mydomain.ch" and "*.mydomain.ch" (while "mydomain.ch" being just a placeholder). I purchased "mydomain.ch" at Infomaniak. So for that DNS provider, I created the DNS credentials for the Infomaniak provider with a correct access token.
And then, when I want to issue a certificate from the Certificates List, putting the two domain above, nginx-ui cannot create the cert.

But, for example, while I'm using Nginx Proxy Manager (because I used that before testing nginx-ui), it can create that cert while providing the same domains above.

To Reproduce
Steps to reproduce the behavior:

  1. Simply issue a Let's Encrypt cert for "mydomain.ch" and "*.mydomain.ch" in "Home > Certificates > Certificates List"

Expected behavior
Successfully create the Let's Encrypt cert for the above domains.

Screenshots

  1. The "Issue Certificate" creation box:
    Image

  2. Full trace logs while doing it (redacted some info):

nginx-ui  | 2026/01/14 20:35:27 github.com/0xJacky/Nginx-UI/model/cert.go:68
nginx-ui  | [0.157ms] [rows:0] SELECT * FROM `certs` WHERE (`certs`.`name` = "mydomain.ch" AND `certs`.`filename` = "mydomain.ch" AND `certs`.`key_type` = "P384") AND `certs`.`deleted_at` IS NULL ORDER BY `certs`.`id` LIMIT 1
nginx-ui  | 2026-01-14 20:35:27.101     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert [Nginx UI] Preparing lego configurations
nginx-ui  |
nginx-ui  | 2026/01/14 20:35:27 github.com/0xJacky/Nginx-UI/internal/cert/payload.go:43
nginx-ui  | [0.089ms] [rows:1] SELECT * FROM `acme_users` WHERE `acme_users`.`id` = 7 AND `acme_users`.`deleted_at` IS NULL ORDER BY `acme_users`.`id` LIMIT 1
nginx-ui  | 2026-01-14 20:35:27.101     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert [Nginx UI] ACME User: System Initial User, Email: REDACTED@REDACTED.com, CA Dir: https://acme-v02.api.letsencrypt.org/directory
nginx-ui  | 2026-01-14 20:35:27.101     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert [Nginx UI] Creating client facilitates communication with the CA server
nginx-ui  |
nginx-ui  | 2026/01/14 20:35:27 github.com/0xJacky/Nginx-UI/internal/cert/issue.go:111
nginx-ui  | [0.158ms] [rows:1] SELECT * FROM `dns_credentials` WHERE id=1  AND `dns_credentials`.`deleted_at` IS NULL LIMIT 1
nginx-ui  | 2026-01-14 20:35:27.647     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert [Nginx UI] Setting DNS01 challenge provider
nginx-ui  | 2026-01-14 20:35:27.647     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert [Nginx UI] Setting environment variables
nginx-ui  | 2026-01-14 20:35:27.647     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert [Nginx UI] Obtaining certificate
nginx-ui  | 2026-01-14 20:35:27.647     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:35:27 [INFO] [mydomain.ch, *.mydomain.ch] acme: Obtaining bundled SAN certificate
nginx-ui  |
nginx-ui  | 2026-01-14 20:35:29.121     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:35:29 [INFO] [*.mydomain.ch] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz/REDACTED/REDACTED
nginx-ui  |
nginx-ui  | 2026-01-14 20:35:29.121     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:35:29 [INFO] [mydomain.ch] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz/REDACTED/REDACTED
nginx-ui  |
nginx-ui  | 2026-01-14 20:35:29.121     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:35:29 [INFO] [*.mydomain.ch] acme: use dns-01 solver
nginx-ui  |
nginx-ui  | 2026-01-14 20:35:29.121     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:35:29 [INFO] [mydomain.ch] acme: Could not find solver for: tls-alpn-01
nginx-ui  |
nginx-ui  | 2026-01-14 20:35:29.121     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:35:29 [INFO] [mydomain.ch] acme: Could not find solver for: http-01
nginx-ui  |
nginx-ui  | 2026-01-14 20:35:29.121     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:35:29 [INFO] [mydomain.ch] acme: use dns-01 solver
nginx-ui  |
nginx-ui  | 2026-01-14 20:35:29.121     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:35:29 [INFO] [*.mydomain.ch] acme: Preparing to solve DNS-01
nginx-ui  |
nginx-ui  | 2026-01-14 20:35:29.122     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:35:29 [INFO] Found CNAME entry for "_acme-challenge.mydomain.ch.": "proxy.on.local."
nginx-ui  |
nginx-ui  | 2026-01-14 20:35:39.346     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:35:39 [INFO] domain "proxy.on.local" not found, trying with "on.local"
nginx-ui  |
nginx-ui  | 2026-01-14 20:35:39.439     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:35:39 [INFO] domain "on.local" not found, trying with "local"
nginx-ui  |
nginx-ui  | 2026-01-14 20:35:39.439     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:35:39 [INFO] [mydomain.ch] acme: Preparing to solve DNS-01
nginx-ui  |
nginx-ui  | 2026-01-14 20:35:39.440     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:35:39 [INFO] Found CNAME entry for "_acme-challenge.mydomain.ch.": "proxy.on.local."
nginx-ui  |
nginx-ui  | 2026-01-14 20:35:49.584     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:35:49 [INFO] domain "proxy.on.local" not found, trying with "on.local"
nginx-ui  |
nginx-ui  | 2026-01-14 20:35:49.685     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:35:49 [INFO] domain "on.local" not found, trying with "local"
nginx-ui  |
nginx-ui  | 2026-01-14 20:35:49.685     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:35:49 [INFO] [*.mydomain.ch] acme: Cleaning DNS-01 challenge
nginx-ui  |
nginx-ui  | 2026-01-14 20:35:49.685     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:35:49 [INFO] Found CNAME entry for "_acme-challenge.mydomain.ch.": "proxy.on.local."
nginx-ui  |
nginx-ui  | 2026-01-14 20:35:59.686     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:35:59 [WARN] [*.mydomain.ch] acme: cleaning up failed: infomaniak: unknown record ID for 'proxy.on.local.'
nginx-ui  |
nginx-ui  | 2026-01-14 20:35:59.686     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:35:59 [INFO] [mydomain.ch] acme: Cleaning DNS-01 challenge
nginx-ui  |
nginx-ui  | 2026-01-14 20:35:59.687     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:35:59 [INFO] Found CNAME entry for "_acme-challenge.mydomain.ch.": "proxy.on.local."
nginx-ui  |
nginx-ui  | 2026-01-14 20:36:09.687     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:36:09 [WARN] [mydomain.ch] acme: cleaning up failed: infomaniak: unknown record ID for 'proxy.on.local.'
nginx-ui  |
nginx-ui  | 2026-01-14 20:36:09.844     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:36:09 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz/REDACTED/REDACTED
nginx-ui  |
nginx-ui  | 2026-01-14 20:36:10.224     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert 2026/01/14 20:36:10 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz/REDACTED/REDACTED
nginx-ui  |
nginx-ui  | 2026-01-14 20:36:10.461     ERROR   github.com/0xJacky/Nginx-UI/internal/cert/logger.go:85  AutoCert obtain cert error: error: one or more domains had a problem:
nginx-ui  | [*.mydomain.ch] [*.mydomain.ch] acme: error presenting token: infomaniak: could not get domain "proxy.on.local.": domain not found local
nginx-ui  | [mydomain.ch] [mydomain.ch] acme: error presenting token: infomaniak: could not get domain "proxy.on.local.": domain not found local
nginx-ui  |
nginx-ui  | 2026-01-14 20:36:10.461     INFO    github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72  AutoCert [Nginx UI] Environment variables cleaned
nginx-ui  |
nginx-ui  | 2026/01/14 20:36:10 github.com/0xJacky/Nginx-UI/model/cert.go:106
nginx-ui  | [0.354ms] [rows:0] UPDATE `certs` SET `updated_at`="2026-01-14 20:36:10.461",`log`="{""message"":""[Nginx UI] Preparing lego configurations""}
nginx-ui  | {""message"":""[Nginx UI] ACME User: %{name}, Email: %{email}, CA Dir: %{caDir}"",""args"":{""caDir"":""https://acme-v02.api.letsencrypt.org/directory"",""email"":""REDACTED@REDACTED.com"",""name"":""System Initial User""}}
nginx-ui  | {""message"":""[Nginx UI] Creating client facilitates communication with the CA server""}
nginx-ui  | {""message"":""[Nginx UI] Setting DNS01 challenge provider""}
nginx-ui  | {""message"":""[Nginx UI] Setting environment variables""}
nginx-ui  | {""message"":""[Nginx UI] Obtaining certificate""}
nginx-ui  | {""message"":""2026/01/14 20:35:27 [INFO] [mydomain.ch, *.mydomain.ch] acme: Obtaining bundled SAN certificate\n""}
nginx-ui  | {""message"":""2026/01/14 20:35:29 [INFO] [*.mydomain.ch] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz/REDACTED/REDACTED\n""}
nginx-ui  | {""message"":""2026/01/14 20:35:29 [INFO] [mydomain.ch] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz/REDACTED/REDACTED\n""}
nginx-ui  | {""message"":""2026/01/14 20:35:29 [INFO] [*.mydomain.ch] acme: use dns-01 solver\n""}
nginx-ui  | {""message"":""2026/01/14 20:35:29 [INFO] [mydomain.ch] acme: Could not find solver for: tls-alpn-01\n""}
nginx-ui  | {""message"":""2026/01/14 20:35:29 [INFO] [mydomain.ch] acme: Could not find solver for: http-01\n""}
nginx-ui  | {""message"":""2026/01/14 20:35:29 [INFO] [mydomain.ch] acme: use dns-01 solver\n""}
nginx-ui  | {""message"":""2026/01/14 20:35:29 [INFO] [*.mydomain.ch] acme: Preparing to solve DNS-01\n""}
nginx-ui  | {""message"":""2026/01/14 20:35:29 [INFO] Found CNAME entry for \""_acme-challenge.mydomain.ch.\"": \""proxy.on.local.\""\n""}
nginx-ui  | {""message"":""2026/01/14 20:35:39 [INFO] domain \""proxy.on.local\"" not found, trying with \""on.local\""\n""}
nginx-ui  | {""message"":""2026/01/14 20:35:39 [INFO] domain \""on.local\"" not found, trying with \""local\""\n""}
nginx-ui  | {""message"":""2026/01/14 20:35:39 [INFO] [mydomain.ch] acme: Preparing to solve DNS-01\n""}
nginx-ui  | {""message"":""2026/01/14 20:35:39 [INFO] Found CNAME entry for \""_acme-challenge.mydomain.ch.\"": \""proxy.on.local.\""\n""}
nginx-ui  | {""message"":""2026/01/14 20:35:49 [INFO] domain \""proxy.on.local\"" not found, trying with \""on.local\""\n""}
nginx-ui  | {""message"":""2026/01/14 20:35:49 [INFO] domain \""on.local\"" not found, trying with \""local\""\n""}
nginx-ui  | {""message"":""2026/01/14 20:35:49 [INFO] [*.mydomain.ch] acme: Cleaning DNS-01 challenge\n""}
nginx-ui  | {""message"":""2026/01/14 20:35:49 [INFO] Found CNAME entry for \""_acme-challenge.mydomain.ch.\"": \""proxy.on.local.\""\n""}
nginx-ui  | {""message"":""2026/01/14 20:35:59 [WARN] [*.mydomain.ch] acme: cleaning up failed: infomaniak: unknown record ID for 'proxy.on.local.' \n""}
nginx-ui  | {""message"":""2026/01/14 20:35:59 [INFO] [mydomain.ch] acme: Cleaning DNS-01 challenge\n""}
nginx-ui  | {""message"":""2026/01/14 20:35:59 [INFO] Found CNAME entry for \""_acme-challenge.mydomain.ch.\"": \""proxy.on.local.\""\n""}
nginx-ui  | {""message"":""2026/01/14 20:36:09 [WARN] [mydomain.ch] acme: cleaning up failed: infomaniak: unknown record ID for 'proxy.on.local.' \n""}
nginx-ui  | {""message"":""2026/01/14 20:36:09 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz/REDACTED/REDACTED\n""}
nginx-ui  | {""message"":""2026/01/14 20:36:10 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz/REDACTED/REDACTED\n""}
nginx-ui  | {""message"":""[Nginx UI] Environment variables cleaned""}
nginx-ui  | 2026-01-14 20:36:10 [Error] obtain cert error: error: one or more domains had a problem:
nginx-ui  | [*.mydomain.ch] [*.mydomain.ch] acme: error presenting token: infomaniak: could not get domain ""proxy.on.local."": domain not found local
nginx-ui  | [mydomain.ch] [mydomain.ch] acme: error presenting token: infomaniak: could not get domain ""proxy.on.local."": domain not found local" WHERE `id` = 0 AND `certs`.`deleted_at` IS NULL RETURNING *
nginx-ui  | [GIN] 2026/01/14 - 20:36:10 | 200 | 43.362640845s |    192.168.5.55 | GET      "/api/domain/mydomain.ch/cert?token=REDACTED"

While "proxy.on.local" being the actual nginx-ui host and "on.local" being my LAN DNS zone.

Info (please complete the following information):

  • Server OS: Archlinux
  • Server Arch: x86
  • Nginx UI Version: 2.3.2 (512)
  • Your Browser: Librewolf

Additional context
Running via docker-compose, the full compose file:

services:
  nginx-ui:
    stdin_open: true
    tty: true
    container_name: nginx-ui
    image: 'uozi/nginx-ui:latest'
    restart: always
    environment:
      - TZ=Europe/Zurich
    volumes:
      - '/home/on/services/docker/nginx-ui/data/nginx:/etc/nginx'
      - '/home/on/services/docker/nginx-ui/data/nginx-ui:/etc/nginx-ui'
      - '/var/www:/var/www'
      - '/var/run/docker.sock:/var/run/docker.sock'
      - /etc/localtime:/etc/localtime:ro
    network_mode: host
Originally created by @astrdev on GitHub (Jan 14, 2026). Original GitHub issue: https://github.com/0xJacky/nginx-ui/issues/1523 **Describe the bug** Here, I want to create a Let's Encrypt cert for "mydomain.ch" and "*.mydomain.ch" (while "mydomain.ch" being just a placeholder). I purchased "mydomain.ch" at Infomaniak. So for that DNS provider, I created the DNS credentials for the Infomaniak provider with a correct access token. And then, when I want to issue a certificate from the Certificates List, putting the two domain above, nginx-ui cannot create the cert. But, for example, while I'm using Nginx Proxy Manager (because I used that before testing nginx-ui), it can create that cert while providing the same domains above. **To Reproduce** Steps to reproduce the behavior: 1. Simply issue a Let's Encrypt cert for "mydomain.ch" and "*.mydomain.ch" in "Home > Certificates > Certificates List" **Expected behavior** Successfully create the Let's Encrypt cert for the above domains. **Screenshots** 1. The "Issue Certificate" creation box: <img width="346" height="790" alt="Image" src="https://github.com/user-attachments/assets/5313a76d-a2e3-4368-83a7-7c8a08d83391" /> 2. Full trace logs while doing it (redacted some info): ``` nginx-ui | 2026/01/14 20:35:27 github.com/0xJacky/Nginx-UI/model/cert.go:68 nginx-ui | [0.157ms] [rows:0] SELECT * FROM `certs` WHERE (`certs`.`name` = "mydomain.ch" AND `certs`.`filename` = "mydomain.ch" AND `certs`.`key_type` = "P384") AND `certs`.`deleted_at` IS NULL ORDER BY `certs`.`id` LIMIT 1 nginx-ui | 2026-01-14 20:35:27.101 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert [Nginx UI] Preparing lego configurations nginx-ui | nginx-ui | 2026/01/14 20:35:27 github.com/0xJacky/Nginx-UI/internal/cert/payload.go:43 nginx-ui | [0.089ms] [rows:1] SELECT * FROM `acme_users` WHERE `acme_users`.`id` = 7 AND `acme_users`.`deleted_at` IS NULL ORDER BY `acme_users`.`id` LIMIT 1 nginx-ui | 2026-01-14 20:35:27.101 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert [Nginx UI] ACME User: System Initial User, Email: REDACTED@REDACTED.com, CA Dir: https://acme-v02.api.letsencrypt.org/directory nginx-ui | 2026-01-14 20:35:27.101 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert [Nginx UI] Creating client facilitates communication with the CA server nginx-ui | nginx-ui | 2026/01/14 20:35:27 github.com/0xJacky/Nginx-UI/internal/cert/issue.go:111 nginx-ui | [0.158ms] [rows:1] SELECT * FROM `dns_credentials` WHERE id=1 AND `dns_credentials`.`deleted_at` IS NULL LIMIT 1 nginx-ui | 2026-01-14 20:35:27.647 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert [Nginx UI] Setting DNS01 challenge provider nginx-ui | 2026-01-14 20:35:27.647 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert [Nginx UI] Setting environment variables nginx-ui | 2026-01-14 20:35:27.647 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert [Nginx UI] Obtaining certificate nginx-ui | 2026-01-14 20:35:27.647 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:35:27 [INFO] [mydomain.ch, *.mydomain.ch] acme: Obtaining bundled SAN certificate nginx-ui | nginx-ui | 2026-01-14 20:35:29.121 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:35:29 [INFO] [*.mydomain.ch] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz/REDACTED/REDACTED nginx-ui | nginx-ui | 2026-01-14 20:35:29.121 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:35:29 [INFO] [mydomain.ch] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz/REDACTED/REDACTED nginx-ui | nginx-ui | 2026-01-14 20:35:29.121 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:35:29 [INFO] [*.mydomain.ch] acme: use dns-01 solver nginx-ui | nginx-ui | 2026-01-14 20:35:29.121 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:35:29 [INFO] [mydomain.ch] acme: Could not find solver for: tls-alpn-01 nginx-ui | nginx-ui | 2026-01-14 20:35:29.121 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:35:29 [INFO] [mydomain.ch] acme: Could not find solver for: http-01 nginx-ui | nginx-ui | 2026-01-14 20:35:29.121 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:35:29 [INFO] [mydomain.ch] acme: use dns-01 solver nginx-ui | nginx-ui | 2026-01-14 20:35:29.121 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:35:29 [INFO] [*.mydomain.ch] acme: Preparing to solve DNS-01 nginx-ui | nginx-ui | 2026-01-14 20:35:29.122 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:35:29 [INFO] Found CNAME entry for "_acme-challenge.mydomain.ch.": "proxy.on.local." nginx-ui | nginx-ui | 2026-01-14 20:35:39.346 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:35:39 [INFO] domain "proxy.on.local" not found, trying with "on.local" nginx-ui | nginx-ui | 2026-01-14 20:35:39.439 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:35:39 [INFO] domain "on.local" not found, trying with "local" nginx-ui | nginx-ui | 2026-01-14 20:35:39.439 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:35:39 [INFO] [mydomain.ch] acme: Preparing to solve DNS-01 nginx-ui | nginx-ui | 2026-01-14 20:35:39.440 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:35:39 [INFO] Found CNAME entry for "_acme-challenge.mydomain.ch.": "proxy.on.local." nginx-ui | nginx-ui | 2026-01-14 20:35:49.584 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:35:49 [INFO] domain "proxy.on.local" not found, trying with "on.local" nginx-ui | nginx-ui | 2026-01-14 20:35:49.685 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:35:49 [INFO] domain "on.local" not found, trying with "local" nginx-ui | nginx-ui | 2026-01-14 20:35:49.685 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:35:49 [INFO] [*.mydomain.ch] acme: Cleaning DNS-01 challenge nginx-ui | nginx-ui | 2026-01-14 20:35:49.685 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:35:49 [INFO] Found CNAME entry for "_acme-challenge.mydomain.ch.": "proxy.on.local." nginx-ui | nginx-ui | 2026-01-14 20:35:59.686 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:35:59 [WARN] [*.mydomain.ch] acme: cleaning up failed: infomaniak: unknown record ID for 'proxy.on.local.' nginx-ui | nginx-ui | 2026-01-14 20:35:59.686 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:35:59 [INFO] [mydomain.ch] acme: Cleaning DNS-01 challenge nginx-ui | nginx-ui | 2026-01-14 20:35:59.687 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:35:59 [INFO] Found CNAME entry for "_acme-challenge.mydomain.ch.": "proxy.on.local." nginx-ui | nginx-ui | 2026-01-14 20:36:09.687 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:36:09 [WARN] [mydomain.ch] acme: cleaning up failed: infomaniak: unknown record ID for 'proxy.on.local.' nginx-ui | nginx-ui | 2026-01-14 20:36:09.844 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:36:09 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz/REDACTED/REDACTED nginx-ui | nginx-ui | 2026-01-14 20:36:10.224 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert 2026/01/14 20:36:10 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz/REDACTED/REDACTED nginx-ui | nginx-ui | 2026-01-14 20:36:10.461 ERROR github.com/0xJacky/Nginx-UI/internal/cert/logger.go:85 AutoCert obtain cert error: error: one or more domains had a problem: nginx-ui | [*.mydomain.ch] [*.mydomain.ch] acme: error presenting token: infomaniak: could not get domain "proxy.on.local.": domain not found local nginx-ui | [mydomain.ch] [mydomain.ch] acme: error presenting token: infomaniak: could not get domain "proxy.on.local.": domain not found local nginx-ui | nginx-ui | 2026-01-14 20:36:10.461 INFO github.com/0xJacky/Nginx-UI/internal/cert/logger.go:72 AutoCert [Nginx UI] Environment variables cleaned nginx-ui | nginx-ui | 2026/01/14 20:36:10 github.com/0xJacky/Nginx-UI/model/cert.go:106 nginx-ui | [0.354ms] [rows:0] UPDATE `certs` SET `updated_at`="2026-01-14 20:36:10.461",`log`="{""message"":""[Nginx UI] Preparing lego configurations""} nginx-ui | {""message"":""[Nginx UI] ACME User: %{name}, Email: %{email}, CA Dir: %{caDir}"",""args"":{""caDir"":""https://acme-v02.api.letsencrypt.org/directory"",""email"":""REDACTED@REDACTED.com"",""name"":""System Initial User""}} nginx-ui | {""message"":""[Nginx UI] Creating client facilitates communication with the CA server""} nginx-ui | {""message"":""[Nginx UI] Setting DNS01 challenge provider""} nginx-ui | {""message"":""[Nginx UI] Setting environment variables""} nginx-ui | {""message"":""[Nginx UI] Obtaining certificate""} nginx-ui | {""message"":""2026/01/14 20:35:27 [INFO] [mydomain.ch, *.mydomain.ch] acme: Obtaining bundled SAN certificate\n""} nginx-ui | {""message"":""2026/01/14 20:35:29 [INFO] [*.mydomain.ch] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz/REDACTED/REDACTED\n""} nginx-ui | {""message"":""2026/01/14 20:35:29 [INFO] [mydomain.ch] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz/REDACTED/REDACTED\n""} nginx-ui | {""message"":""2026/01/14 20:35:29 [INFO] [*.mydomain.ch] acme: use dns-01 solver\n""} nginx-ui | {""message"":""2026/01/14 20:35:29 [INFO] [mydomain.ch] acme: Could not find solver for: tls-alpn-01\n""} nginx-ui | {""message"":""2026/01/14 20:35:29 [INFO] [mydomain.ch] acme: Could not find solver for: http-01\n""} nginx-ui | {""message"":""2026/01/14 20:35:29 [INFO] [mydomain.ch] acme: use dns-01 solver\n""} nginx-ui | {""message"":""2026/01/14 20:35:29 [INFO] [*.mydomain.ch] acme: Preparing to solve DNS-01\n""} nginx-ui | {""message"":""2026/01/14 20:35:29 [INFO] Found CNAME entry for \""_acme-challenge.mydomain.ch.\"": \""proxy.on.local.\""\n""} nginx-ui | {""message"":""2026/01/14 20:35:39 [INFO] domain \""proxy.on.local\"" not found, trying with \""on.local\""\n""} nginx-ui | {""message"":""2026/01/14 20:35:39 [INFO] domain \""on.local\"" not found, trying with \""local\""\n""} nginx-ui | {""message"":""2026/01/14 20:35:39 [INFO] [mydomain.ch] acme: Preparing to solve DNS-01\n""} nginx-ui | {""message"":""2026/01/14 20:35:39 [INFO] Found CNAME entry for \""_acme-challenge.mydomain.ch.\"": \""proxy.on.local.\""\n""} nginx-ui | {""message"":""2026/01/14 20:35:49 [INFO] domain \""proxy.on.local\"" not found, trying with \""on.local\""\n""} nginx-ui | {""message"":""2026/01/14 20:35:49 [INFO] domain \""on.local\"" not found, trying with \""local\""\n""} nginx-ui | {""message"":""2026/01/14 20:35:49 [INFO] [*.mydomain.ch] acme: Cleaning DNS-01 challenge\n""} nginx-ui | {""message"":""2026/01/14 20:35:49 [INFO] Found CNAME entry for \""_acme-challenge.mydomain.ch.\"": \""proxy.on.local.\""\n""} nginx-ui | {""message"":""2026/01/14 20:35:59 [WARN] [*.mydomain.ch] acme: cleaning up failed: infomaniak: unknown record ID for 'proxy.on.local.' \n""} nginx-ui | {""message"":""2026/01/14 20:35:59 [INFO] [mydomain.ch] acme: Cleaning DNS-01 challenge\n""} nginx-ui | {""message"":""2026/01/14 20:35:59 [INFO] Found CNAME entry for \""_acme-challenge.mydomain.ch.\"": \""proxy.on.local.\""\n""} nginx-ui | {""message"":""2026/01/14 20:36:09 [WARN] [mydomain.ch] acme: cleaning up failed: infomaniak: unknown record ID for 'proxy.on.local.' \n""} nginx-ui | {""message"":""2026/01/14 20:36:09 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz/REDACTED/REDACTED\n""} nginx-ui | {""message"":""2026/01/14 20:36:10 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz/REDACTED/REDACTED\n""} nginx-ui | {""message"":""[Nginx UI] Environment variables cleaned""} nginx-ui | 2026-01-14 20:36:10 [Error] obtain cert error: error: one or more domains had a problem: nginx-ui | [*.mydomain.ch] [*.mydomain.ch] acme: error presenting token: infomaniak: could not get domain ""proxy.on.local."": domain not found local nginx-ui | [mydomain.ch] [mydomain.ch] acme: error presenting token: infomaniak: could not get domain ""proxy.on.local."": domain not found local" WHERE `id` = 0 AND `certs`.`deleted_at` IS NULL RETURNING * nginx-ui | [GIN] 2026/01/14 - 20:36:10 | 200 | 43.362640845s | 192.168.5.55 | GET "/api/domain/mydomain.ch/cert?token=REDACTED" ``` While "proxy.on.local" being the actual nginx-ui host and "on.local" being my LAN DNS zone. **Info (please complete the following information):** - Server OS: Archlinux - Server Arch: x86 - Nginx UI Version: 2.3.2 (512) - Your Browser: Librewolf **Additional context** Running via docker-compose, the full compose file: ``` services: nginx-ui: stdin_open: true tty: true container_name: nginx-ui image: 'uozi/nginx-ui:latest' restart: always environment: - TZ=Europe/Zurich volumes: - '/home/on/services/docker/nginx-ui/data/nginx:/etc/nginx' - '/home/on/services/docker/nginx-ui/data/nginx-ui:/etc/nginx-ui' - '/var/www:/var/www' - '/var/run/docker.sock:/var/run/docker.sock' - /etc/localtime:/etc/localtime:ro network_mode: host ```
kerem 2026-03-01 17:13:26 +03:00
  • closed this issue
  • added the
    bug
         label
kerem commented 2026-03-01 17:13:27 +03:00
Author
Owner
Copy link

@0xJacky commented on GitHub (Feb 8, 2026):

A public domain name is required to apply for the certificate.

<!-- gh-comment-id:3867068502 --> @0xJacky commented on GitHub (Feb 8, 2026): A public domain name is required to apply for the certificate.
kerem commented 2026-03-01 17:13:27 +03:00
Author
Owner
Copy link

@astrdev commented on GitHub (Feb 12, 2026):

A public domain name is required to apply for the certificate.

What does this has to do with this issue? My domain was always private (with THE WHOIS info redacted, if it's what you mean), but it didn't stop me to create the same cert (for the both domains above) in NPM before.

Do you have an idea?

<!-- gh-comment-id:3893898464 --> @astrdev commented on GitHub (Feb 12, 2026): > A public domain name is required to apply for the certificate. What does this has to do with this issue? My domain was always private (with THE WHOIS info redacted, if it's what you mean), but it didn't stop me to create the same cert (for the both domains above) in NPM before. Do you have an idea?
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
dev
weblate
main
renovate/uuid-14.x
renovate/typescript-6.x
renovate/all-minor-patch
cursor/interface-conversion-error-36ec
cursor/docker-api-stat-path-27ca
cursor/nginx-ui-disk-i-o-3d99
cursor/cloudflare-dns-comments-299c
cursor/access-log-dark-mode-font-dfdc
copilot/fix-ai-chat-title-error
cursor/propfind-method-logging-33b5
cursor/docker-client-version-update-d1b4
copilot/fix-nginx-ui-api-errors
cursor/update-x-forwarded-proto-header-handling-1223
cursor/fix-nginx-ui-issue-1455-gpt-5.1-codex-high-079c
cursor/update-nginx-ui-to-vue-3-gpt-5.1-codex-high-3100
cursor/investigate-nginx-ui-issue-1446-gpt-5.1-codex-high-2be0
v1
v2.3.8
v2.3.7
v2.3.6
v2.3.5
v2.3.4
v2.3.3
v2.3.2
v2.3.1
v2.3.0
v2.2.1
v2.2.0-patch.1
v2.2.0
v2.1.17
v2.1.16
v2.1.15
v2.1.14
v2.1.13
v2.1.12
v2.1.11
v2.1.10
v2.1.9
v2.1.8
v2.1.7
v2.1.6
v2.1.5
v2.1.4-patch.1
v2.1.4
v2.1.3
v2.1.2
v2.1.1
v2.1.0-patch.1
v2.1.0
v2.1.0-rc.3
v2.1.0-rc.2
v2.1.0-rc.1
v2.1.0-beta.1
v2.0.2
v2.0.1
v2.0.0
v2.0.0-rc.8-patch.1
v2.0.0-rc.8
v2.0.0-rc.7-patch.6
v2.0.0-rc.7-patch.7
v2.0.0-rc.7-patch.8
v2.0.0-rc.7-patch.5
v2.0.0-rc.7-patch.4
v2.0.0-rc.7-patch.3
v2.0.0-rc.7-patch.2
v2.0.0-rc.7-patch.1
v2.0.0-rc.7
v2.0.0-rc.6-patch.5
v2.0.0-rc.6-patch.4
v2.0.0-rc.6-patch.3
v2.0.0-rc.6-patch.2
v2.0.0-rc.6-patch.1
v2.0.0-rc.6
v2.0.0-rc.5
v2.0.0-rc.4-patch.3
v2.0.0-rc.4-patch.2
v2.0.0-rc.4-patch.1
v2.0.0-rc.4
v2.0.0-rc.3-patch.1
v2.0.0-rc.3
v2.0.0-rc.2
v2.0.0-rc.1-patch.2
v2.0.0-rc.1-patch.1
v2.0.0-rc.1
v2.0.0-beta.42
v2.0.0-beta.41
v2.0.0-beta.40
v2.0.0-beta.39-risefront.6
v2.0.0-beta.39-risefront.5
v2.0.0-beta.39-risefront.4
v2.0.0-beta.39-risefront.3
v2.0.0-beta.39-risefront.2
v2.0.0-beta.39-risefront
v2.0.0-beta.39
v2.0.0-beta.38
v2.0.0-beta.37-patch.5
v2.0.0-beta.37-patch.3
v2.0.0-beta.37-patch.4
v2.0.0-beta.37-patch.2
v2.0.0-beta.37-patch.1
v2.0.0-beta.37
v2.0.0-beta.36
v2.0.0-beta.35
v2.0.0-beta.34
v2.0.0-beta.33
v2.0.0-beta.32-patch.1
v2.0.0-beta.32
v2.0.0-beta.31
v2.0.0-beta.30
v2.0.0-beta.29
v2.0.0-beta.28
v2.0.0-beta.27
v2.0.0-beta.26
v2.0.0-beta.25-patch.2
v2.0.0-beta.25-patch.1
v2.0.0-beta.25
v2.0.0-beta.24
v2.0.0-beta.23-patch.2
v2.0.0-beta.23-patch.1
v2.0.0-beta.23
v2.0.0-beta.22
v2.0.0-beta.21
v2.0.0-beta.20
v2.0.0-beta.19
v2.0.0-beta.18-patch.2
v2.0.0-beta.18-patch.1
v2.0.0-beta.18
v2.0.0-beta.17
v2.0.0-beta.16
v2.0.0-beta.15
v2.0.0-beta.14
v2.0.0-beta.13-patch
v2.0.0-beta.13
v2.0.0-beta.12
v2.0.0-beta.11
v2.0.0-beta.10-patch
v2.0.0-beta.10
v2.0.0-beta.9
v2.0.0-beta.8-patch
v2.0.0-beta.8
v2.0.0-beta.7
v2.0.0-beta.6-patch.2
v2.0.0-beta.6-patch
v2.0.0-beta.6
v2.0.0-beta.5-patch
v2.0.0-beta.5
v2.0.0-beta.4-patch
v2.0.0-beta.4
v2.0.0-beta.3
v2.0.0-beta.2
v2.0.0-beta.1
v1.9.9-4
v1.9.9-3
v1.9.9-2
v1.9.9
v1.9.9-1
v1.8.4-patch
v1.8.4
v1.8.3
v1.8.2
v1.8.1
v1.8.0
v1.7.9
v1.7.8
v1.7.7
v1.7.6
v1.7.5
v1.7.4
v1.7.3
v1.7.2
v1.7.1
v1.7.0-patch
v1.7.0
v1.6.8
v1.6.7
v1.6.6
v1.6.5
v1.6.3
v1.6.2
v1.6.1
v1.6.0-fix
v1.6.0
v1.5.2
v1.5.1
v1.5.0
v1.5.0-beta9
v1.5.0-beta8
v1.5.0-beta7
v1.5.0-beta6
v1.5.0-beta5
v1.5.0-beta4-fix
v1.5.0-beta4
v1.5.0-beta3
v1.5.0-beta2
v1.5.0-beta1
v1.4.2
v1.4.1
v1.4.0
v1.4.0-rc1
v1.3.3-rc1
v1.3.2
v1.3.1-fix
v1.3.1
v1.3.0
v1.3.0-rc1
v1.2.2
v1.2.1
v1.2.0
v1.2.0-rc.3
v1.2.0-rc.2
v1.2.0-rc.1
v1.2.0-alpha.4
v1.2.0-alpha.3
v1.2.0-alpha.2
v1.1.0
Labels
Clear labels   
Q/A

   
bug

   
casdoor

   
dependencies

   
docker

   
documentation

   
duplicate

   
enhancement

   
help wanted

   
invalid

   
lego

   
platform:openwrt

   
platform:windows

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
wontfix
No labels
Q/A
bug
casdoor
dependencies
docker
documentation
duplicate
enhancement
help wanted
invalid
lego
platform:openwrt
platform:windows
pull-request
question
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/nginx-ui#6619
No description provided.