created certicate www to the domain if the primary site letstseycrypt not confirmed.
short description
sometimes when creating letsencryt certificate is issued only for a domain www.
correct behaviour
If the primary domain did not ask for validation, it is incorrect behavior and it should be noted the generation of certificates on.
environment
Server OS: (/ubuntu 18.04)
ISPConfig 3.1.13 Patch 1 Released
proposed fix
If the main domain does not pass the validation letsencrypt, you need to stop script execution, as the validation domain www does not make sense. If the site for some reason does not have a domain without www for example, there is no access to DNS zone other than www ( theory). The true test of customer behavior to create a website www.site.ru and disable the sub domain www. Re-enable.
22.04.2019-13:32 - WARNING - Could not verify domain topengineer.ru, so excluding it from letsencrypt request.
22.04.2019-13:32 - DEBUG - Verified domain www.topengineer.ru should be reachable for letsencrypt.
22.04.2019-13:32 - DEBUG - Create Let's Encrypt SSL Cert for: topengineer.ru
22.04.2019-13:32 - DEBUG - Let's Encrypt SSL Cert domains: --domains www.topengineer.ru
22.04.2019-13:32 - DEBUG - exec: /usr/bin/letsencrypt certonly -n --text --agree-tos --expand --authenticator webroot --server https://acme-v02.api.letsencrypt.org/directory --rsa-key-size 4096 --email postmaster@topengineer.ru --domains www.topengineer.ru --webroot-path /usr/local/ispconfig/interface/acme
22.04.2019-13:32 - DEBUG - Let's Encrypt Cert config path is: /etc/letsencrypt/renewal/www.topengineer.ru.conf.
22.04.2019-13:32 - DEBUG - Let's Encrypt Cert file: /etc/letsencrypt/live/www.topengineer.ru/fullchain.pem exists.
Edited by Viktor