github-starred/pangolin
2
0
Fork 0
mirror of https://github.com/fosrl/pangolin.git synced 2026-05-07 05:09:18 -05:00
Code Issues 564 Packages Projects Releases 72 Wiki Activity

[GH-ISSUE #3010] Most of my resources are stuck showing "Certificate: Pending" #11059

New Issue
Closed
opened 2026-05-06 15:44:42 -05:00 by GiteaMirror · 4 comments
GiteaMirror commented 2026-05-06 15:44:42 -05:00
Owner
Copy Link

Originally created by @PHLAK on GitHub (May 6, 2026).
Original GitHub issue: https://github.com/fosrl/pangolin/issues/3010

Describe the Bug

I recently set up a fresh instance on v1.18 and, at fist, I had a misconfiguration in the docker-compose file causing the acme.json file to be mounted to an incorrect location on the Pangolin container. However, I copied the acme.json into the correct location, shut down the containers, fixed the volume mounts and restarted the containers and now most of my resources are showing "Certificate: Pending" (yellow). Only two of them are showing "Certificate: Valid" (green). The resources seem to be working fine otherwise.

Image

Environment

  • OS Type & Version: Debian 13
  • Pangolin Version: 1.18.2

To Reproduce

Not sure.

Expected Behavior

The resources should show "Certificate: Valid" (green).

Originally created by @PHLAK on GitHub (May 6, 2026). Original GitHub issue: https://github.com/fosrl/pangolin/issues/3010 ### Describe the Bug I recently set up a fresh instance on v1.18 and, at fist, I had a misconfiguration in the `docker-compose` file causing the `acme.json` file to be mounted to an incorrect location on the Pangolin container. However, I copied the `acme.json` into the correct location, shut down the containers, fixed the volume mounts and restarted the containers and now most of my resources are showing "Certificate: Pending" (yellow). Only two of them are showing "Certificate: Valid" (green). The resources seem to be working fine otherwise. <img width="1306" height="1818" alt="Image" src="https://github.com/user-attachments/assets/f6469568-0370-42c6-b1e6-af7c2828d264" /> ### Environment - OS Type & Version: Debian 13 - Pangolin Version: 1.18.2 ### To Reproduce Not sure. ### Expected Behavior The resources should show "Certificate: Valid" (green).
GiteaMirror commented 2026-05-06 15:44:42 -05:00
Author
Owner
Copy Link

@AstralDestiny commented on GitHub (May 6, 2026):

Would always recommend using dns validation over http, as http has a rate limit and can take some time between, Also info disclosure per https://crt.sh/

https://docs.fossorial.io/Pangolin/Configuration/wildcard-certs

<!-- gh-comment-id:4389559744 --> @AstralDestiny commented on GitHub (May 6, 2026): Would always recommend using dns validation over http, as http has a rate limit and can take some time between, Also info disclosure per https://crt.sh/ https://docs.fossorial.io/Pangolin/Configuration/wildcard-certs
GiteaMirror commented 2026-05-06 15:44:43 -05:00
Author
Owner
Copy Link

@PHLAK commented on GitHub (May 6, 2026):

Would always recommend using dns validation over http

I believe I am using DNS validation. I have the following set in my traefik_config.yml config file.

certificatesResolvers:
  letsencrypt:
    acme:
      dnsChallenge:
        provider: cloudflare
      email: [REDACTED]
      storage: /letsencrypt/acme.json
      caServer: https://acme-v02.api.letsencrypt.org/directory
<!-- gh-comment-id:4389617391 --> @PHLAK commented on GitHub (May 6, 2026): > Would always recommend using dns validation over http I believe I am using DNS validation. I have the following set in my `traefik_config.yml` config file. ``` certificatesResolvers: letsencrypt: acme: dnsChallenge: provider: cloudflare email: [REDACTED] storage: /letsencrypt/acme.json caServer: https://acme-v02.api.letsencrypt.org/directory ```
GiteaMirror commented 2026-05-06 15:44:44 -05:00
Author
Owner
Copy Link

@AstralDestiny commented on GitHub (May 6, 2026):

Can you put traefik into trace logs and then down and up and check what traefik says for when it comes to acme generation? and does your amce.json show the wildcards properly?

<!-- gh-comment-id:4389774950 --> @AstralDestiny commented on GitHub (May 6, 2026): Can you put traefik into trace logs and then down and up and check what traefik says for when it comes to acme generation? and does your amce.json show the wildcards properly?
GiteaMirror commented 2026-05-06 15:44:45 -05:00
Author
Owner
Copy Link

@PHLAK commented on GitHub (May 6, 2026):

I found this comment and was able to clear out my certificates table (though I'm using Postgres) and all resources are showing "Certificate: Valid" (green) now.

Image
<!-- gh-comment-id:4390391323 --> @PHLAK commented on GitHub (May 6, 2026): I found [this comment](https://github.com/fosrl/pangolin/issues/2935#issuecomment-4348272408) and was able to clear out my `certificates` table (though I'm using Postgres) and all resources are showing "Certificate: Valid" (green) now. <img width="1276" height="1308" alt="Image" src="https://github.com/user-attachments/assets/22e5046a-202b-46a2-909e-649c2f017b4d" />
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
api
authentication
bug
config
dependencies
docker
documentation
enhancement
good first issue
help wanted
Improvement
Look Into
needs investigating
networking
new feature
non-critical bug
potential bug
pull-request
Mirrored from GitHub Pull Request
 question
reverse proxy
Security
stale
ui
wontfix
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
GiteaMirror ninjasurge
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: github-starred/pangolin#11059
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?