I use lets encrypt with cloudflare dns all over the place in my house. But I just cant get it to work for home assistant. I have it configured as below. However when I start the app it shows that its running but I never see any logs get generated. I’ve tried this in a vm and on my RPi. Any suggestions would be greatly appreciated.
keyfile: privkey.pem
certfile: fullchain.pem
challenge: dns
dns:
provider: dns-cloudflare
cloudflare_api_token: REDACTED
email: [email protected]
domains:
How? Do you have a proxy server?
I tried it with and without the NGINX Home Assistant SSL proxy. Should the lets encrypt plugin not at least be able to create the cert files without the proxy server or does it need the proxy server for the ssl cert generation too?
If this is for home only I would use caddy.
It autogenerates certs and config is significantly easier. You can also use caddy module for cloudflare to verify domain so you don’t even need to open port on router
I still use nginx for external WAN but use caddy locally. You can actually use Caddy to generate the certs and share with nginx but most of what I told you will be complicated enough. Start small
I’ll definitely look into caddy. It seems I have made progress. It looks like my problem isnt with lets encrypt. I sshed into the cli and found the ssl folder. Its in /root. I was expecting it to be in /root/config. For that matter it seems odd that I have the ssl proxy and lets encrypt enabled but nothing is in the /root/addons or /root/addon_configs folder. So it looks like my first problem isnt actually lets encrypt its just that none of the apps are showing their logs in the web ui for the apps.
When using the DNS challenge you do not need the web site, so no proxy is needed.
Do the addon not provide any logs at all when you restart it?