So today is the day I had to renew my Let's Encrypt certs. Unfortunately, it wasn't as easy as I hoped, and my renewal process isn't going to be as simple as I thought.
Fortunately doing it manually was still simple. I just don't want to have to do things, and wait for things.
So the if you remember my post from January, I talked about how to get a wildcard cert setup for HAProxy to use.
Well, turns out since I did this using the
--manual flag, I'm stuck having to do the renewal manually (at least for now), and I can't use the
renew verb. I have to use the
certonly verb again. Not only is it that verb it's the exact same command:
certbot certonly --manual --email email@example.com --server https://acme-v02.api.letsencrypt.org/directory
--agree-tos -d *.nicklang.com -d nicklang.com
This walks me through the DNS and HTTP challenge all over again. So I need to deploy a TXT record and deploy a txt page to verify ownership. The problem with this process is it requires me to go and make changes to my domain reg (which is super easy) and then I need to deploy a text mage to my site which again is super easy. BUT I just don't want to do it.
I'm hoping that between the next 3 months I can review this process and hopefully get away from a manual way to an automated way.
But for now, lets kick this can down the trail.