natemcmaster/LettuceEncrypt

Failed to validate ownership of domain

VoIPTools opened this issue · 5 comments

I created a generic ASP.Net API project and I'm following the developer instructions and using ngrok. I keep getting the following error:

fail: LettuceEncrypt.Internal.AcmeCertificateLoader[0]
Failed to validate ownership of domainName '0884dd10f800.ngrok.io'. Reason: urn:ietf:params:acme:error:unauthorized: Cannot negotiate ALPN protocol "acme-tls/1" for tls-alpn-01 challenge, Code = Forbidden

I see in ngrok:

GET /.well-known/acme-challenge/PPLGfHvD3OOOPrTjH1f4OrsF-bxgw49HruQYUH7Bses 200 OK

Why?

If I set:

UseStagingServer = true;

Then everything seems to work, except that I don't get a real certificate.

I'm also facing this issue 😔 Can somebody help? I have my API running at port 80...

same issue here

Sorry for long delays on responses. I am merging a refactor of domain validation. It has been really hard to test and reproduce these kinds of errors, but I think I found an important thing this library was doing wrong. The fix should be in the 1.1.0 version of this library, which I intended to release soon. Please give the updated and open an new issue if you still have errors.