Acme.json stays empty

petergerdes · January 20, 2020, 3:37pm

On Traefik v2.1.2, I cannot seem to get a certificate from Letsencrypt and written into acme.json (the file is there with permission 600). In the logs I don't seem to find any references of Traefik trying to request one.

traefik.yaml:

providers:
  docker:
    endpoint: "unix:///var/run/docker.sock"
    exposedByDefault: false
#    network: proxynetwork

  file:
    directory: "./rules"
    watch: true

certificatesResolvers:
  default:
    acme:
      email: "XXXX"
      storage: "acme.json"
      httpChallenge:
        entryPoint: web

rules:

http:
  routers:
    hass:
      entryPoints:
        - https
      service: service-hass
      rule: Host("this.example.com")
      middlewares:
        - "hsts"
      tls:
        certresolver: default
  services:
    service-hass:
      loadBalancer:
        servers:
          - url: http ://123.123.123.123:8123
        passHostHeader: true
        passTLSCert: true

Logs:

time="2020-01-20T15:28:50Z" level=info msg="Traefik version 2.1.2 built on 2020-01-07T18:40:31Z"

time="2020-01-20T15:28:50Z" level=debug msg="Static configuration loaded {\"global\":{\"checkNewVersion\":true},\"serversTransport\":{\"maxIdleConnsPerHost\":200},\"entryPoints\":{\"http\":{\"address\":\":80\",\"transport\":{\"lifeCycle\":{\"graceTimeOut\":10000000000},\"respondingTimeouts\":{\"idleTimeout\":180000000000}},\"forwardedHeaders\":{}},\"https\":{\"address\":\":443\",\"transport\":{\"lifeCycle\":{\"graceTimeOut\":10000000000},\"respondingTimeouts\":{\"idleTimeout\":180000000000}},\"forwardedHeaders\":{}},\"traefik\":{\"address\":\":8080\",\"transport\":{\"lifeCycle\":{\"graceTimeOut\":10000000000},\"respondingTimeouts\":{\"idleTimeout\":180000000000}},\"forwardedHeaders\":{}}},\"providers\":{\"providersThrottleDuration\":2000000000,\"docker\":{\"watch\":true,\"endpoint\":\"unix:///var/run/docker.sock\",\"defaultRule\":\"Host(`{{ normalize .Name }}`)\",\"swarmModeRefreshSeconds\":15000000000},\"file\":{\"directory\":\"./rules\",\"watch\":true}},\"api\":{\"insecure\":true,\"dashboard\":true,\"debug\":true},\"log\":{\"level\":\"DEBUG\",\"filePath\":\"/log/traefik.log\",\"format\":\"common\"},\"certificatesResolvers\":{\"default\":{\"acme\":{\"email\":\"email@example.com\",\"caServer\":\"https://acme-v02.api.letsencrypt.org/directory\",\"storage\":\"acme.json\",\"keyType\":\"RSA4096\",\"httpChallenge\":{\"entryPoint\":\"web\"}}}}}"

time="2020-01-20T15:28:50Z" level=info msg="\nStats collection is disabled.\nHelp us improve Traefik by turning this feature on :)\nMore details on: https://docs.traefik.io/v2.0/contributing/data-collection/\n"

time="2020-01-20T15:28:50Z" level=info msg="Starting provider aggregator.ProviderAggregator {}"

time="2020-01-20T15:28:50Z" level=debug msg="Start TCP Server" entryPointName=traefik

time="2020-01-20T15:28:50Z" level=debug msg="Start TCP Server" entryPointName=http

time="2020-01-20T15:28:50Z" level=info msg="Starting provider *file.Provider {\"directory\":\"./rules\",\"watch\":true}"

time="2020-01-20T15:28:50Z" level=debug msg="Start TCP Server" entryPointName=https

time="2020-01-20T15:28:50Z" level=info msg="Starting provider *docker.Provider {\"watch\":true,\"endpoint\":\"unix:///var/run/docker.sock\",\"defaultRule\":\"Host(`{{ normalize .Name }}`)\",\"swarmModeRefreshSeconds\":15000000000}"

time="2020-01-20T15:28:50Z" level=info msg="Starting provider *acme.Provider {\"email\":\"email@example.com\",\"caServer\":\"https://acme-v02.api.letsencrypt.org/directory\",\"storage\":\"acme.json\",\"keyType\":\"RSA4096\",\"httpChallenge\":{\"entryPoint\":\"web\"},\"ResolverName\":\"default\",\"store\":{},\"ChallengeStore\":{}}"

time="2020-01-20T15:28:50Z" level=info msg="Testing certificate renew..." providerName=default.acme

time="2020-01-20T15:28:50Z" level=info msg="Starting provider *traefik.Provider {}"

time="2020-01-20T15:28:50Z" level=debug msg="Configuration received from provider file: {\"http\":{\"routers\":{\"hass\":{\"entryPoints\":[\"https\"],\"middlewares\":[\"hsts\"],\"service\":\"service-hass\",\"rule\":\"Host(\\\"this.example.com\\\")\",\"tls\":{}}},\"middlewares\":{\"hsts\":{\"headers\":{\"sslRedirect\":true,\"stsSeconds\":315360000,\"stsIncludeSubdomains\":true,\"stsPreload\":true}},\"ipwhitelist\":{\"ipWhiteList\":{\"sourceRange\":[\"123.123.123.0/24\"],\"ipStrategy\":{}}},\"redirect\":{\"redirectScheme\":{\"scheme\":\"https\"}}},\"services\":{\"service-hass\":{\"loadBalancer\":{\"servers\":[{\"url\":\"http ://123.123.123.123:8123\"}],\"passHostHeader\":true}}}},\"tcp\":{},\"tls\":{}}" providerName=file

time="2020-01-20T15:28:50Z" level=debug msg="Configuration received from provider default.acme: {\"http\":{},\"tls\":{}}" providerName=default.acme

time="2020-01-20T15:28:50Z" level=debug msg="Configuration received from provider internal: {\"http\":{\"routers\":{\"api\":{\"entryPoints\":[\"traefik\"],\"service\":\"api@internal\",\"rule\":\"PathPrefix(`/api`)\",\"priority\":2147483646},\"dashboard\":{\"entryPoints\":[\"traefik\"],\"middlewares\":[\"dashboard_redirect@internal\",\"dashboard_stripprefix@internal\"],\"service\":\"dashboard@internal\",\"rule\":\"PathPrefix(`/`)\",\"priority\":2147483645},\"debug\":{\"entryPoints\":[\"traefik\"],\"service\":\"api@internal\",\"rule\":\"PathPrefix(`/debug`)\",\"priority\":2147483646}},\"middlewares\":{\"dashboard_redirect\":{\"redirectRegex\":{\"regex\":\"^(http:\\\\/\\\\/[^:\\\\/]+(:\\\\d+)?)\\\\/$\",\"replacement\":\"${1}/dashboard/\",\"permanent\":true}},\"dashboard_stripprefix\":{\"stripPrefix\":{\"prefixes\":[\"/dashboard/\",\"/dashboard\"]}}},\"services\":{\"api\":{},\"dashboard\":{}}},\"tcp\":{},\"tls\":{}}" providerName=internal

time="2020-01-20T15:28:50Z" level=debug msg="Creating Middleware (ResponseModifier)" middlewareType=Headers entryPointName=https routerName=hass@file middlewareName=hsts@file

time="2020-01-20T15:28:50Z" level=debug msg="Creating middleware" entryPointName=https routerName=hass@file serviceName=service-hass middlewareType=Pipelining middlewareName=pipelining

time="2020-01-20T15:28:50Z" level=debug msg="Creating load-balancer" routerName=hass@file serviceName=service-hass entryPointName=https

time="2020-01-20T15:28:50Z" level=debug msg="Creating server 0 http ://123.123.123.123:8123" serverName=0 entryPointName=https routerName=hass@file serviceName=service-hass

time="2020-01-20T15:28:50Z" level=debug msg="Added outgoing tracing middleware service-hass" entryPointName=https routerName=hass@file middlewareName=tracing middlewareType=TracingForwarder

time="2020-01-20T15:28:50Z" level=debug msg="Creating middleware" entryPointName=https routerName=hass@file middlewareName=hsts@file middlewareType=Headers

time="2020-01-20T15:28:50Z" level=debug msg="Setting up secureHeaders from %v{map[] map[] false [] [] [] 0 false [] [] true false map[] false 315360000 true true false false false false false}" middlewareType=Headers entryPointName=https routerName=hass@file middlewareName=hsts@file

time="2020-01-20T15:28:50Z" level=debug msg="Adding tracing to middleware" entryPointName=https middlewareName=hsts@file routerName=hass@file

time="2020-01-20T15:28:50Z" level=debug msg="Creating middleware" entryPointName=https middlewareType=Recovery middlewareName=traefik-internal-recovery

time="2020-01-20T15:28:50Z" level=debug msg="No default certificate, generating one"

time="2020-01-20T15:28:50Z" level=debug msg="Provider connection established with docker 19.03.5 (API 1.40)" providerName=docker

time="2020-01-20T15:28:50Z" level=debug msg="Filtering disabled container" providerName=docker container=traefik-docker-ea042d5d835d8d94f9a38e51fecff189ca15ddaf6991786fd45498975f9cbfa9

time="2020-01-20T15:28:50Z" level=debug msg="Configuration received from provider docker: {\"http\":{},\"tcp\":{}}" providerName=docker

time="2020-01-20T15:28:55Z" level=debug msg="Added outgoing tracing middleware dashboard@internal" routerName=dashboard@internal middlewareName=tracing middlewareType=TracingForwarder entryPointName=traefik

time="2020-01-20T15:28:55Z" level=debug msg="Creating middleware" entryPointName=traefik routerName=dashboard@internal middlewareName=dashboard_stripprefix@internal middlewareType=StripPrefix

time="2020-01-20T15:28:55Z" level=debug msg="Adding tracing to middleware" entryPointName=traefik routerName=dashboard@internal middlewareName=dashboard_stripprefix@internal

time="2020-01-20T15:28:55Z" level=debug msg="Creating middleware" routerName=dashboard@internal middlewareName=dashboard_redirect@internal middlewareType=RedirectRegex entryPointName=traefik

time="2020-01-20T15:28:55Z" level=debug msg="Setting up redirection from ^(http:\\/\\/[^:\\/]+(:\\d+)?)\\/$ to ${1}/dashboard/" entryPointName=traefik routerName=dashboard@internal middlewareName=dashboard_redirect@internal middlewareType=RedirectRegex

time="2020-01-20T15:28:55Z" level=debug msg="Adding tracing to middleware" entryPointName=traefik routerName=dashboard@internal middlewareName=dashboard_redirect@internal

time="2020-01-20T15:28:55Z" level=debug msg="Added outgoing tracing middleware api@internal" entryPointName=traefik routerName=debug@internal middlewareName=tracing middlewareType=TracingForwarder

time="2020-01-20T15:28:55Z" level=debug msg="Added outgoing tracing middleware api@internal" middlewareName=tracing middlewareType=TracingForwarder entryPointName=traefik routerName=api@internal

time="2020-01-20T15:28:55Z" level=debug msg="Creating middleware" entryPointName=traefik middlewareType=Recovery middlewareName=traefik-internal-recovery

time="2020-01-20T15:28:55Z" level=debug msg="Creating Middleware (ResponseModifier)" entryPointName=https routerName=hass@file middlewareType=Headers middlewareName=hsts@file

time="2020-01-20T15:28:55Z" level=debug msg="Creating middleware" middlewareType=Pipelining entryPointName=https routerName=hass@file serviceName=service-hass middlewareName=pipelining

time="2020-01-20T15:28:55Z" level=debug msg="Creating load-balancer" entryPointName=https routerName=hass@file serviceName=service-hass

time="2020-01-20T15:28:55Z" level=debug msg="Creating server 0 http: //123.123.123.1238123" serviceName=service-hass serverName=0 entryPointName=https routerName=hass@file

time="2020-01-20T15:28:55Z" level=debug msg="Added outgoing tracing middleware service-hass" middlewareName=tracing middlewareType=TracingForwarder entryPointName=https routerName=hass@file

time="2020-01-20T15:28:55Z" level=debug msg="Creating middleware" middlewareName=hsts@file middlewareType=Headers entryPointName=https routerName=hass@file

time="2020-01-20T15:28:55Z" level=debug msg="Setting up secureHeaders from %v{map[] map[] false [] [] [] 0 false [] [] true false map[] false 315360000 true true false false false false false}" middlewareType=Headers entryPointName=https routerName=hass@file middlewareName=hsts@file

time="2020-01-20T15:28:55Z" level=debug msg="Adding tracing to middleware" entryPointName=https routerName=hass@file middlewareName=hsts@file

time="2020-01-20T15:28:55Z" level=debug msg="Creating middleware" entryPointName=https middlewareName=traefik-internal-recovery middlewareType=Recovery

time="2020-01-20T15:28:55Z" level=debug msg="No default certificate, generating one"

time="2020-01-20T15:28:57Z" level=debug msg="Added outgoing tracing middleware dashboard@internal" entryPointName=traefik routerName=dashboard@internal middlewareName=tracing middlewareType=TracingForwarder

time="2020-01-20T15:28:57Z" level=debug msg="Creating middleware" entryPointName=traefik routerName=dashboard@internal middlewareName=dashboard_stripprefix@internal middlewareType=StripPrefix

time="2020-01-20T15:28:57Z" level=debug msg="Adding tracing to middleware" entryPointName=traefik routerName=dashboard@internal middlewareName=dashboard_stripprefix@internal

time="2020-01-20T15:28:57Z" level=debug msg="Creating middleware" middlewareName=dashboard_redirect@internal middlewareType=RedirectRegex entryPointName=traefik routerName=dashboard@internal

time="2020-01-20T15:28:57Z" level=debug msg="Setting up redirection from ^(http:\\/\\/[^:\\/]+(:\\d+)?)\\/$ to ${1}/dashboard/" entryPointName=traefik routerName=dashboard@internal middlewareName=dashboard_redirect@internal middlewareType=RedirectRegex

time="2020-01-20T15:28:57Z" level=debug msg="Adding tracing to middleware" middlewareName=dashboard_redirect@internal entryPointName=traefik routerName=dashboard@internal

time="2020-01-20T15:28:57Z" level=debug msg="Added outgoing tracing middleware api@internal" entryPointName=traefik routerName=debug@internal middlewareName=tracing middlewareType=TracingForwarder

time="2020-01-20T15:28:57Z" level=debug msg="Added outgoing tracing middleware api@internal" routerName=api@internal middlewareName=tracing middlewareType=TracingForwarder entryPointName=traefik

time="2020-01-20T15:28:57Z" level=debug msg="Creating middleware" entryPointName=traefik middlewareName=traefik-internal-recovery middlewareType=Recovery

time="2020-01-20T15:28:57Z" level=debug msg="Creating Middleware (ResponseModifier)" entryPointName=https routerName=hass@file middlewareName=hsts@file middlewareType=Headers

time="2020-01-20T15:28:57Z" level=debug msg="Creating middleware" middlewareType=Pipelining routerName=hass@file entryPointName=https serviceName=service-hass middlewareName=pipelining

time="2020-01-20T15:28:57Z" level=debug msg="Creating load-balancer" routerName=hass@file entryPointName=https serviceName=service-hass

time="2020-01-20T15:28:57Z" level=debug msg="Creating server 0 http: //123.123.123.123:8123" routerName=hass@file entryPointName=https serviceName=service-hass serverName=0

time="2020-01-20T15:28:57Z" level=debug msg="Added outgoing tracing middleware service-hass" entryPointName=https routerName=hass@file middlewareName=tracing middlewareType=TracingForwarder

time="2020-01-20T15:28:57Z" level=debug msg="Creating middleware" entryPointName=https routerName=hass@file middlewareName=hsts@file middlewareType=Headers

time="2020-01-20T15:28:57Z" level=debug msg="Setting up secureHeaders from %v{map[] map[] false [] [] [] 0 false [] [] true false map[] false 315360000 true true false false false false false}" routerName=hass@file middlewareName=hsts@file middlewareType=Headers entryPointName=https

time="2020-01-20T15:28:57Z" level=debug msg="Adding tracing to middleware" entryPointName=https routerName=hass@file middlewareName=hsts@file

time="2020-01-20T15:28:57Z" level=debug msg="Creating middleware" entryPointName=https middlewareName=traefik-internal-recovery middlewareType=Recovery

time="2020-01-20T15:28:57Z" level=debug msg="No default certificate, generating one"

I've been trying several versions of Traefik, even went to page 2 of Google, but cannot find the problem in my setup.

ldez · January 20, 2020, 5:24pm

Hello,

Yaml is case sentive, so certresolver -> certResolver

petergerdes · January 20, 2020, 7:38pm

Oh damn, lost hours on this! Thank you so much!

Topic		Replies	Views
Acme config empty, acme.json stays empty Traefik v2 docker , letsencrypt-acme	6	1203	March 2, 2024
Traefik doesn't write in acme.json on version 2.3.4 Traefik v2 docker , docker-swarm , letsencrypt-acme	6	3846	December 17, 2020
No ACME certification creation Traefik v2 docker , letsencrypt-acme	2	1776	September 18, 2019
Issue requesting SSL using ACME Traefik v3 (latest) docker , letsencrypt-acme	0	29	September 18, 2024
Problem with LetsEncrypt certificate generation Traefik v2 letsencrypt-acme	1	1577	September 15, 2021

Acme.json stays empty

Related Topics