root
/
greenlock.js
mirror of https://github.com/therootcompany/greenlock.js.git
2
0
Fork 0
Code Issues 27 Releases Wiki Activity

E_ACME 400 error: jwk and kid header fields are mutually exclusive #13

New Issue
Open
opened 2019-12-06 13:12:51 +00:00 by Ghost · 5 comments
Ghost commented 2019-12-06 13:12:51 +00:00
Copy Link

I sometimes get an error response to a cert_order request:

jwk and kid header fields are mutually exclusive

Any idea what the problem could be?

I don't see any other useful info in the error message, is there anything else you might require?

I sometimes get an error response to a `cert_order` request: `jwk and kid header fields are mutually exclusive` Any idea what the problem could be? I don't see any other useful info in the error message, is there anything else you might require?
Ghost commented 2020-02-05 17:47:13 +00:00
Author
Copy Link

i'm also seeing this consistently

i'm also seeing this consistently
coolaj86 commented 2020-02-05 18:56:49 +00:00
Owner
Copy Link

Hmm... thought I had responded to this a month age.

I would LOVE to get some sort of context around when or how it happens. Also, does it self-recover (i.e. works an hour later) or do you have to delete the config folder in order to fix it?

Hmm... thought I had responded to this a month age. I would LOVE to get some sort of context around when or how it happens. Also, does it self-recover (i.e. works an hour later) or do you have to delete the config folder in order to fix it?
coolaj86 commented 2020-02-05 18:59:27 +00:00
Owner
Copy Link

I know that the jwk must be used when the ACME account is created (because there is no kid yet) and that the kid is used after the account is created (and you can't use the jwk).

I did look through my logic a little with hopes of finding something obvious... but I haven't found it yet.

I know that the `jwk` must be used when the ACME account is created (because there is no `kid` yet) and that the `kid` is used after the account is created (and you can't use the `jwk`). I did look through my logic a little with hopes of finding something obvious... but I haven't found it yet.
Ghost commented 2020-02-06 12:30:39 +00:00
Author
Copy Link

ok i'm no longer seeing this error

I was writing my own store, manager, and http challenge modules and one of them failed silently - all good now!

Super appreciate all the work you put into building out the greenlock suite of packages, I was able to add custom subdomains (akin to github pages) to our product in less than a day!

ok i'm no longer seeing this error I was writing my own store, manager, and http challenge modules and one of them failed silently - all good now! Super appreciate all the work you put into building out the greenlock suite of packages, I was able to add custom subdomains (akin to github pages) to our product in less than a day!
Ghost commented 2020-04-05 08:50:53 +00:00
Author
Copy Link

Hi,
il am seeing the error in my log but with no direct effect on the multiple domains maanged by greenlock, at least that i hav found.

with back trace:

Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: Error cert_order:
Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: [400] jwk and kid header fields are mutually exclusive
Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: code: E_ACME
Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: Error: [400] jwk and kid header fields are mutually exclusive
Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]:     at /home/paul/git/gadael-proxy/node_modules/@root/acme/utils.js:118:8
Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]:     at runMicrotasks (<anonymous>)
Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]:     at processTicksAndRejections (internal/process/task_queues.js:97:5)
Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]:     at async Object.greenlock._order (/home/paul/git/gadael-proxy/node_modules/@root/greenlock/greenlock.js:445:23)
Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]:     at async Object.greenlock._renew (/home/paul/git/gadael-proxy/node_modules/@root/greenlock/greenlock.js:335:9)
Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]:     at async Object.greenlock.get (/home/paul/git/gadael-proxy/node_modules/@root/greenlock/greenlock.js:212:23)
Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: Error cert_order:
Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: [400] jwk and kid header fields are mutually exclusive
Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: code: E_ACME
Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: Error: [400] jwk and kid header fields are mutually exclusive
Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]:     at /home/paul/git/gadael-proxy/node_modules/@root/acme/utils.js:118:8
Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]:     at runMicrotasks (<anonymous>)
Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]:     at processTicksAndRejections (internal/process/task_queues.js:97:5)
Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]:     at async Object.greenlock._order (/home/paul/git/gadael-proxy/node_modules/@root/greenlock/greenlock.js:445:23)
Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]:     at async Object.greenlock._renew (/home/paul/git/gadael-proxy/node_modules/@root/greenlock/greenlock.js:335:9)
Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]:     at async Object.greenlock.get (/home/paul/git/gadael-proxy/node_modules/@root/greenlock/greenlock.js:212:23)
Hi, il am seeing the error in my log but with no direct effect on the multiple domains maanged by greenlock, at least that i hav found. with back trace: ``` Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: Error cert_order: Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: [400] jwk and kid header fields are mutually exclusive Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: code: E_ACME Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: Error: [400] jwk and kid header fields are mutually exclusive Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: at /home/paul/git/gadael-proxy/node_modules/@root/acme/utils.js:118:8 Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: at runMicrotasks (<anonymous>) Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: at processTicksAndRejections (internal/process/task_queues.js:97:5) Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: at async Object.greenlock._order (/home/paul/git/gadael-proxy/node_modules/@root/greenlock/greenlock.js:445:23) Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: at async Object.greenlock._renew (/home/paul/git/gadael-proxy/node_modules/@root/greenlock/greenlock.js:335:9) Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: at async Object.greenlock.get (/home/paul/git/gadael-proxy/node_modules/@root/greenlock/greenlock.js:212:23) Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: Error cert_order: Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: [400] jwk and kid header fields are mutually exclusive Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: code: E_ACME Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: Error: [400] jwk and kid header fields are mutually exclusive Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: at /home/paul/git/gadael-proxy/node_modules/@root/acme/utils.js:118:8 Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: at runMicrotasks (<anonymous>) Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: at processTicksAndRejections (internal/process/task_queues.js:97:5) Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: at async Object.greenlock._order (/home/paul/git/gadael-proxy/node_modules/@root/greenlock/greenlock.js:445:23) Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: at async Object.greenlock._renew (/home/paul/git/gadael-proxy/node_modules/@root/greenlock/greenlock.js:335:9) Apr 05 10:32:55 ip-172-31-20-146 nodejs[17964]: at async Object.greenlock.get (/home/paul/git/gadael-proxy/node_modules/@root/greenlock/greenlock.js:212:23) ```
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
master
github
next
v4
npm
v3
wip
dns-challenge-regression-fix
v2.4
v2.5
v2.3
v2
v2.2
acmev2
v2.1
greenlock
v1
node-letsencrypt-python
v4.0.5
v4.0.4
v4.0.3
v4.0.2
v4.0.1
v4.0.0
v3.1.5
v3.1.4
v3.1.3
v3.0.25
v3.0.24
v3.0.23
v3.0.21
v3.0.20
v3.0.19
v3.0.18
v3.0.17
v3.0.16
v3.0.15
v3.0.12
v3.0.11
v3.0.10
v3.0.9
v3.0.7
v3.0.6
v3.0.5
v3.0.4
v3.0.3
v3.0.2
v3.0.1
v2.8.8
v2.8.7
v2.8.6
v2.8.5
v2.8.4
v2.8.3
v2.8.2
v2.8.1
v2.8.0
v2.7.23
v2.7.22
v2.7.21
v2.7.20
v2.7.19
v2.7.18
v2.7.17
v2.7.16
v2.7.15
v2.7.14
v2.7.13
v2.7.12
v2.7.11
v2.7.10
v2.7.9
v2.7.8
v2.7.7
v2.7.6
v2.7.5
v2.7.4
v2.7.3
v2.7.2
v2.7.1
v2.7.0
v2.6.10
v2.6.9
v2.6.8
v2.6.7
v2.6.6
v2.6.5
v2.6.4
v2.6.3
v2.6.2
v2.6.1
v2.6.0
v2.5.0
v2.4.10
v2.4.9
v2.4.8
v2.4.7
v2.4.2
v2.4.1
v2.4.0
v2.3.13
v2.3.12
v2.3.11
v2.3.10
v2.3.9
v2.3.8
v2.3.7
v2.3.6
v2.3.5
v2.3.4
v2.3.3
v2.3.2
v2.3.1
v2.3.0
v2.2.20
v2.2.19
v2.2.17
v2.2.18
v2.2.16
v2.2.15
v2.2.14
v2.2.13
v2.2.12
v2.2.11
v2.2.10
v2.2.8
v2.2.7
v2.2.6
v2.2.5
v2.2.4
v2.2.3
v2.2.2
v2.2.0
v2.1.19
v2.1.18
v2.1.17
v2.1.16
v2.1.15
v2.1.14
v2.1.13
v2.1.12
v2.1.11
v2.1.10
v2.1.9
v2.1.7
v2.1.6
v2.1.5
v2.1.4
v2.1.3
v2.1.2
v2.1.1
v2.1.0
v1.5.8
v2.0.5
v2.0.4
v1.5.7
v1.5.6
v1.5.5
v2.0.3
v2.0.2
v2.0.1
v2.0.0
v1.5.4
v1.5.3
v1.5.2
v1.5.1
v1.5.0
v1.4.4
v1.4.3
v1.4.2
v1.4.1
v1.4.0
v1.3.0
v1.2.0
v1.1.0
v1.0.2
v1.0.0
v1.0.1
Labels
Clear labels
No items
No Label
Milestone
Clear milestone
No items
No Milestone
Assignees
Clear assignees
No Assignees
2 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: root/greenlock.js#13
No description provided.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?