Forum OpenACS Development: Re: Trying letsencrypt

Collapse
4: Re: Trying letsencrypt (response to 2)
Posted by Cesar Dominguez on
HI Gustaf, i followed all the directions for the set up fo the ssl certificate in naviserver. But first of all my server is in Apache so i first followed the steps for cerbot https://certbot.eff.org/lets-encrypt/ubuntubionic-apache my OS is Ubunto 18.04 my domain is innogroove.com and is secure. After following the steps for naviserver i wanted to use the certificate on same domain but different port ex. innogroove.com:8002 i got this error and the site is not secure: NOTE*:
wrong # args: should be "ns_base64urlencode string"
    while executing
"ns_base64urlencode -binary [binary decode hex $mod]"
    (procedure ":parseAccountKey" line 17)
    invoked from within
":parseAccountKey"
    (procedure "getCertificate" line 50)
    invoked from within
"$c getCertificate"
    ("uplevel" body line 878)
    invoked from within
"uplevel {
    #
# letsencrypt.tcl --
#
#   A small Let's Encrypt client for NaviServer implemented in Tcl,
#   supporting the ACME v2 interface of let..."
    (procedure "code::tcl::/var/www/fd6//packages/acs-subsite/www/admin/lets..." line 2)
    invoked from within
"code::tcl::$__adp_stub"
    ("uplevel" body line 12)
    invoked from within
"uplevel {

        if { [file exists $__adp_stub.tcl] } {

            # ensure that data source preparation procedure exists and is up-to-date
      ..."
    (procedure "adp_prepare" line 2)
    invoked from within
"adp_prepare"
    invoked from within
"template::adp_parse $themed_template {}"
    (procedure "adp_parse_ad_conn_file" line 14)
    invoked from within
"$handler"
    ("uplevel" body line 2)
    invoked from within
"uplevel $code"
    invoked from within
"ad_try {
                $handler
            } ad_script_abort val {
                # do nothing
            }"
    invoked from within
"rp_serve_concrete_file [ad_conn file]"
    (procedure "::nsf::procs::rp_serve_abstract_file" line 60)
    invoked from within
"rp_serve_abstract_file "$root/$extra_url""
    ("uplevel" body line 2)
    invoked from within
"uplevel $code"
    invoked from within
"ad_try {
                rp_serve_abstract_file "$root/$extra_url"
                set ::tcl_url2file([ad_conn url]) [ad_conn file]
                se..."
I will appreciate your support.
Collapse
5: Re: Trying letsencrypt (response to 4)
Posted by Antonio Pisano on
Dear Cesar,

this seems related with your Naviserver version can you please tell wich one are you using?

Ciao
Antonio

Collapse
6: Re: Trying letsencrypt (response to 5)
Posted by Cesar Dominguez on
Hi Antonio, Thanks for replying. The Naviserver version i have installed is 4.99.18. Thanks,
Collapse
7: Re: Trying letsencrypt (response to 6)
Posted by Gustaf Neumann on
Dear Cesar,

you should either use the versions included in the tar file releases from sourceforge [1] or use the tip versions from bitbucket.

There was a binary-reform included in 4.99.19 (provide explicit arguments instead of guessing). From the error message you provided, on can see that the version of letsencrypt you are using assumes a version of NaviServer supporting the "-binary" flag. So either downgrade letsencrypt or upgrade naviserver.

[1] https://sourceforge.net/projects/naviserver/files/naviserver/