Exclude /.well-known/acme-challenge URL from / context

luckyrajpurohit · December 20, 2022, 2:46pm

Hello Everyone,
How to exclude /.well-known/acme-challenge context from / context?.
currently it looking in / context because /.well-known/acme-challenge context overidden by / context. hence SSL renew not working.

Below is my domain vhost config(openlitespeed)

$VH_ROOT/public_html
vhDomain                  $VH_NAME
vhAliases                 www.$VH_NAME
adminEmails               root@localhost
enableGzip                1
enableIpGeo               1

errorlog $VH_ROOT/logs/$VH_NAME.error_log {
  useServer               0
  logLevel                ERROR
  rollingSize             10M
}

accesslog $VH_ROOT/logs/$VH_NAME.access_log {
  useServer               0
  logFormat               "%h %l %u %t "%r" %>s %b "%{Referer}i" "%{User-Agent}i""
  logHeaders              5
  rollingSize             10M
  keepDays                10
  compressArchive         1
}

index  {
  useServer               0
  indexFiles              index.php, index.html
}

phpIniOverride  {
php_admin_value open_basedir "/tmp:$VH_ROOT"
}

extprocessor nodeapp-proxy {
  type                    proxy
  address                 http://127.0.0.1:3004
  maxConns                100
  pcKeepAliveTimeout      5
  initTimeout             600
  retryTimeout            0
  respBuffer              0
}

context /.well-known/acme-challenge {
  location                /usr/local/lsws/Example/html/.well-known/acme-challenge
  allowBrowse             1

  rewrite  {

  }
  addDefaultCharset       off

  phpIniOverride  {

  }
}

context / {
  type                    proxy
  handler                 nodeapp-proxy
  addDefaultCharset       off
}

rewrite  {
  enable                  1
  autoLoadHtaccess        1
  rules                   <<<END_rules
### Rewrite Rules Added by CyberPanel Rewrite Rule Generator

RewriteEngine On
RewriteCond %{HTTP_HOST} !^www. [NC]
RewriteRule ^(.*)$ http://www.%{HTTP_HOST}%{REQUEST_URI} [R=301,L]

### End CyberPanel Generated Rules.
### Rewrite Rules Added by CyberPanel Rewrite Rule Generator

RewriteEngine On
RewriteCond %{HTTPS}  !=on
RewriteRule ^/?(.*) https://%{SERVER_NAME}/$1 [R,L]

### End CyberPanel Generated Rules.
  END_rules

}

vhssl  {
  keyFile                 /etc/letsencrypt/live/domain.io/privkey.pem
  certFile                /etc/letsencrypt/live/domain.io/fullchain.pem
  certChain               1
  ciphers                 EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH:ECDHE-RSA-AES128-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA128:DHE-RSA-AES128-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES128-GCM-SHA128:ECDHE-RSA-AES128-SHA384:ECDHE-RSA-AES128-SHA128:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-AES128-SHA128:DHE-RSA-AES128-SHA128:DHE-RSA-AES128-SHA:DHE-RSA-AES128-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA384:AES128-GCM-SHA128:AES128-SHA128:AES128-SHA128:AES128-SHA:AES128-SHA:DES-CBC3-SHA:HIGH:!aNULL:!eNULL:!EXPORT:!DES:!MD5:!PSK:!RC4
  enableECDHE             1
  renegProtection         1
  sslSessionCache         1
  enableSpdy              15
  enableStapling          1
  ocspRespMaxAge          86400
}

Abdul_Haseeb · December 21, 2022, 7:13am

Hi,

if you are creating website after updating cyberpanel you will see content like this. but in the old site you have to do it manually.
so its not the issue.
can you please share your logs here.

luckyrajpurohit · December 21, 2022, 4:40pm

How to exclude /.well-known/acme-challenge context from / context?.

Abdul_Haseeb · December 22, 2022, 6:40am

by removing this content from vhost file.
but this is not recommended . your ssl will not work after this.