analogic / MailServer / issues / #369 - Change letsencrypt challenge to https — Bitbucket

Issue #369 resolved

Ronny Laborius created an issue 2018-06-13

Hi,

to use the TLS letsencrypt feature, a challenge in http://{host} is sent to letsencrypt. In my setup, i have a nginx reverse proxy in front of the mailserver.

So all http request will be redirected to https. Is it possible to change the initial challenge from http to https ?

Thanks

Comments (4)

SH repo owner
- changed status to resolved
Are you using ngnix-proxy container? You should set HTTPS=OFF

Please see working example https://gist.github.com/analogic/51fbe91b580d7913b72320f89bf994cc#file-docker-compose-yml

Reopen if you want to
- 2018-06-13T16:48:28+00:00
Ronny Laborius reporter
I have done this ... The problem is the offload nginx in front of the mailserver redirects all to https

so this one

http://{host}/.well-known/acme-challenge/

is redirected to

https://{host}/.well-known/acme-challenge/

which is not available
- 2018-06-13T16:58:16+00:00
SH repo owner
You need to change settings of nginx in front of mailserver to not redirect, acme challenge http-01 requires token be accessible through HTTP...
- 2018-06-13T17:09:47+00:00
Ronny Laborius reporter
Ok thanks i try to find out how ... Thought there is an option in Letsencrypt to change the challenge to https

Thanks Ronny
- 2018-06-13T17:26:46+00:00
Log in to comment

Assignee: –

Type: proposal

Priority: minor

Status: resolved

Votes: 0

Watchers: 1

Jira: the preferred issue tracker for Bitbucket. Join the team!