Today, 19-May-2020, I’m going to take a shot at simplifying my testing on dgdocker3.grinnell.edu by removing unnecessary things and consolidating as much as possible to reduce clutter in the logs and get right to the point. I’m also going to have a look to see if there are additional logs that can tell give me more detail. Everything used here, and everything that takes place here, will be found in a new directory, /opt/containers/test on DGDocker3.
The key files involved in these tests are presented in subsections here.
My initial test was a simplified repeat of Test 7. The result was much like I documented in that previous test, with no certs, and no indication of problems other than the mysterious “TLS handshake error” that I reported before. So, time to make some changes and see what happens.
Changing the Name of the CertResolver
In all my previous tests there are lots of instances of “http”, and most notably, it’s the name given to the certresolver regardless if this is an HTTP-01 or DNS-01 challenge. Since my simplified tests all focus on DNS-01 I’m changing that certresolver name to “dns”.
This change was made in ./test/docker-compose.yml lines 22 and 43, and line 30 of ./test/data/traefik.yml. No other files or lines were modified.
The “S” in “S1” distinguishes this as a “Simplified” test. To run this test I executed the following, as root, on dgdocker3.grinnell.edu:
grep Certificates data/acme.json