I spoke too soon and I’m back at error 502 on the nextcloud install.
It was working for a while and then nextcloud was showing 502 errors when I woke up this morning.
curl -v https://cloud.y8s.com
backend:
Feb 21 13:15:30 cloud caddy[527]: {"level":"debug","ts":1645467330.654302,"logger":"tls.handshake","msg":"choosing certificate","identifier":"cloud.y8s.casa","num_choices":1}
Feb 21 13:15:30 cloud caddy[527]: {"level":"debug","ts":1645467330.6548214,"logger":"tls.handshake","msg":"default certificate selection results","identifier":"cloud.y8s.casa","subjects":["cloud.y8s.casa"],"managed":true,"issuer_key":"caddy.y8s.casa-acme-local-directory","hash":"a2a2ddcce28e21b298b806054164aed4469b9785e5ccb1e745904a37f863e3b1"}
Feb 21 13:15:30 cloud caddy[527]: {"level":"debug","ts":1645467330.6549203,"logger":"tls.handshake","msg":"matched certificate in cache","subjects":["cloud.y8s.casa"],"managed":true,"expiration":1645397606,"hash":"a2a2ddcce28e21b298b806054164aed4469b9785e5ccb1e745904a37f863e3b1"}
Feb 21 13:15:30 cloud caddy[527]: {"level":"debug","ts":1645467330.660738,"logger":"http.stdlib","msg":"http: TLS handshake error from 10.10.10.40:37718: remote error: tls: bad certificate"}
frontend:
Feb 21 13:15:30 iot caddy[27429]: {"level":"debug","ts":1645467330.6614866,"logger":"http.handlers.reverse_proxy","msg":"upstream roundtrip","upstream":"cloud.y8s.casa:443","request":{"remote_addr":"173.8.14.69:62113","proto":"HTTP/1.1","method":"GET","host":"cloud.y8s.casa:443","uri":"/","headers":{"User-Agent":["curl/7.79.1"],"Accept":["*/*"],"X-Forwarded-Proto":["https"],"X-Forwarded-Host":["cloud.y8s.com"],"X-Forwarded-For":["173.8.14.69"]},"tls":{"resumed":false,"version":771,"cipher_suite":49196,"proto":"http/1.1","proto_mutual":true,"server_name":"cloud.y8s.com"}},"duration":0.012889179,"error":"x509: certificate has expired or is not yet valid: current time 2022-02-21T13:15:30-05:00 is after 2022-02-20T22:53:26Z"}
Feb 21 13:15:30 iot caddy[27429]: {"level":"error","ts":1645467330.661751,"logger":"http.log.error","msg":"x509: certificate has expired or is not yet valid: current time 2022-02-21T13:15:30-05:00 is after 2022-02-20T22:53:26Z","request":{"remote_addr":"173.8.14.69:62113","proto":"HTTP/1.1","method":"GET","host":"cloud.y8s.com","uri":"/","headers":{"User-Agent":["curl/7.79.1"],"Accept":["*/*"]},"tls":{"resumed":false,"version":771,"cipher_suite":49196,"proto":"http/1.1","proto_mutual":true,"server_name":"cloud.y8s.com"}},"duration":0.013289512,"status":502,"err_id":"4ccxe2418","err_trace":"reverseproxy.statusError (reverseproxy.go:861)"}
Note that I have changed my hostnames back to what they were when this problem originally occurred. test.eastcapitol.us
becomes cloud.y8s.com
, but the problem is the same.