Must be name 'acme' (lowercase)

Question

Must be name 'acme' (lowercase)

strarsis opened this issue 3 years ago · 2 comments

The provisioner name for ACME must be in lowercase acme, otherwise step CA will not find the provisioner (certbot uses the lowercase variant).

    - name: Add ACME provisioner
      maxhoesel.smallstep.step_ca_provisioner:
        name: acme
        type: ACME
      become: yes
      become_user: "{{ step_ca_user }}"

Currently this is not the case in the prepare.yml file:
https://github.com/maxhoesel/ansible-collection-smallstep/blob/4e4e0a375db8fe76aebdf8210546a4001873a6b2/roles/step_acme_cert/molecule/default/prepare.yml#L24-L29

It may also be a good idea to add this to the README as an example for adding the ACME provisioner.

Answer 1 · 2021-08-28T14:32:18.000Z

To be clear, this is an issue with certbot specifically, right? I just tested an uppercase provisioner with step-cli and had no issues whatsoever. The molecule test you linked is working as well., Could you perhaps provide a log or an existing issue that references this issue in certbot?

If that's the case, then I don't think this is an issue with this collection specifically, but rather a problem with certbot. I'd be okay with adding a note the the step_ca_provisioner module, but I'd like to have some issue/note that I can reference.

Answer 2 · 2022-01-11T14:27:15.000Z

Follow up: smallstep/certificates#684