mtn/blob.json Secret

## blob.json
{
  "identifier": {
    "type": "dns",
    "value": "www.a.com"
  },
  "status": "invalid",
  "expires": "2020-07-01T06:20:26Z",
  "challenges": [
    {
      "type": "http-01",
      "status": "invalid",
      "error": {
        "type": "urn:ietf:params:acme:error:connection",
        "detail": "Fetching http://www.a.com/.well-known/acme-challenge/Hk-yyW7xq1THrZSMXRMGUgcU2pm9WtqVFuCsnLDEkQc: Timeout during connect (likely firewall problem)",
        "status": 400
      },
      "url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/5444538432/gS4A4A",
      "token": "Hk-yyW7xq1THrZSMXRMGUgcU2pm9WtqVFuCsnLDEkQc",
      "validationRecord": [
        {
          "url": "http://www.a.com/.well-known/acme-challenge/Hk-yyW7xq1THrZSMXRMGUgcU2pm9WtqVFuCsnLDEkQc",
          "hostname": "www.a.com",
          "port": "80",
          "addressesResolved": [
            "70.178.252.46"
          ],
          "addressUsed": "70.178.252.46"
        }
      ]
    }
  ]
}

## gistfile1.txt
Jun 24 01:03:23 ttserver mmdakhsmkwwy0ab1wfk777657wmz7pp9-acme-start[13190]: 2020/06/24 01:03:23 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/5444277372
Jun 24 01:03:23 ttserver mmdakhsmkwwy0ab1wfk777657wmz7pp9-acme-start[13190]: 2020/06/24 01:03:23 [INFO] Unable to deactivate the authorization: https://acme-v02.api.letsencrypt.org/acme/authz-v3/5444277372
Jun 24 01:03:23 ttserver mmdakhsmkwwy0ab1wfk777657wmz7pp9-acme-start[13190]: 2020/06/24 01:03:23 Could not obtain certificates:
Jun 24 01:03:23 ttserver mmdakhsmkwwy0ab1wfk777657wmz7pp9-acme-start[13190]:         acme: Error -> One or more domains had a problem:
Jun 24 01:03:23 ttserver mmdakhsmkwwy0ab1wfk777657wmz7pp9-acme-start[13190]: [a.com] acme: error: 400 :: urn:ietf:params:acme:error:connection :: Fetching http://a.com/.well-known/acme-challenge/kl1-xN0PEDQwKLaY73ImWj8grZYCYBSfCjHvcrxsr0k: Timeout during connect (likely firewall problem), url:
Jun 24 01:03:23 ttserver mmdakhsmkwwy0ab1wfk777657wmz7pp9-acme-start[13190]: [www.a.com] acme: error: 400 :: urn:ietf:params:acme:error:connection :: Fetching http://www.a.com/.well-known/acme-challenge/qxyaG4FAUGB0dTqo3gA4AJudS59CmUwYiWRPdBsBS7I: Timeout during connect (likely firewall problem), url:
Jun 24 01:03:23 ttserver systemd[1]: acme-a.com.service: Main process exited, code=exited, status=1/FAILURE
Jun 24 01:03:23 ttserver systemd[1]: acme-a.com.service: Failed with result 'exit-code'.
Jun 24 01:03:23 ttserver systemd[1]: Failed to start Renew ACME Certificate for a.com.

## nginxconfig.nix
  services.nginx = {
    enable = true;

    virtualHosts."${domainName}" = {
      serverAliases = [ "www.${domainName}" ];
      enableACME = true;
      forceSSL = false;
      locations."/" = {
        extraConfig = ''
          uwsgi_pass unix://${config.services.uwsgi.instance.vassals.labeler.socket};
          include ${pkgs.nginx}/conf/uwsgi_params;
        '';
      };
    };
  };
	{
	"identifier": {
	"type": "dns",
	"value": "www.a.com"
	},
	"status": "invalid",
	"expires": "2020-07-01T06:20:26Z",
	"challenges": [
	{
	"type": "http-01",
	"status": "invalid",
	"error": {
	"type": "urn:ietf:params:acme:error:connection",
	"detail": "Fetching http://www.a.com/.well-known/acme-challenge/Hk-yyW7xq1THrZSMXRMGUgcU2pm9WtqVFuCsnLDEkQc: Timeout during connect (likely firewall problem)",
	"status": 400
	},
	"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/5444538432/gS4A4A",
	"token": "Hk-yyW7xq1THrZSMXRMGUgcU2pm9WtqVFuCsnLDEkQc",
	"validationRecord": [
	{
	"url": "http://www.a.com/.well-known/acme-challenge/Hk-yyW7xq1THrZSMXRMGUgcU2pm9WtqVFuCsnLDEkQc",
	"hostname": "www.a.com",
	"port": "80",
	"addressesResolved": [
	"70.178.252.46"
	],
	"addressUsed": "70.178.252.46"
	}
	]
	}
	]
	}
	Jun 24 01:03:23 ttserver mmdakhsmkwwy0ab1wfk777657wmz7pp9-acme-start[13190]: 2020/06/24 01:03:23 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/5444277372
	Jun 24 01:03:23 ttserver mmdakhsmkwwy0ab1wfk777657wmz7pp9-acme-start[13190]: 2020/06/24 01:03:23 [INFO] Unable to deactivate the authorization: https://acme-v02.api.letsencrypt.org/acme/authz-v3/5444277372
	Jun 24 01:03:23 ttserver mmdakhsmkwwy0ab1wfk777657wmz7pp9-acme-start[13190]: 2020/06/24 01:03:23 Could not obtain certificates:
	Jun 24 01:03:23 ttserver mmdakhsmkwwy0ab1wfk777657wmz7pp9-acme-start[13190]: acme: Error -> One or more domains had a problem:
	Jun 24 01:03:23 ttserver mmdakhsmkwwy0ab1wfk777657wmz7pp9-acme-start[13190]: [a.com] acme: error: 400 :: urn:ietf:params:acme:error:connection :: Fetching http://a.com/.well-known/acme-challenge/kl1-xN0PEDQwKLaY73ImWj8grZYCYBSfCjHvcrxsr0k: Timeout during connect (likely firewall problem), url:
	Jun 24 01:03:23 ttserver mmdakhsmkwwy0ab1wfk777657wmz7pp9-acme-start[13190]: [www.a.com] acme: error: 400 :: urn:ietf:params:acme:error:connection :: Fetching http://www.a.com/.well-known/acme-challenge/qxyaG4FAUGB0dTqo3gA4AJudS59CmUwYiWRPdBsBS7I: Timeout during connect (likely firewall problem), url:
	Jun 24 01:03:23 ttserver systemd[1]: acme-a.com.service: Main process exited, code=exited, status=1/FAILURE
	Jun 24 01:03:23 ttserver systemd[1]: acme-a.com.service: Failed with result 'exit-code'.
	Jun 24 01:03:23 ttserver systemd[1]: Failed to start Renew ACME Certificate for a.com.
	services.nginx = {
	enable = true;

	virtualHosts."${domainName}" = {
	serverAliases = [ "www.${domainName}" ];
	enableACME = true;
	forceSSL = false;
	locations."/" = {
	extraConfig = ''
	uwsgi_pass unix://${config.services.uwsgi.instance.vassals.labeler.socket};
	include ${pkgs.nginx}/conf/uwsgi_params;
	'';
	};
	};
	};