Well I just tested my server again now and HTTPS seems to work. It’s been almost 8 hours since I started Caddy, looking at the logs it looks like it took 3.5 hours for the SSL certificate to get issued. Is that a typical timeframe?
journalctl -u caddy --no-pager | less
-- Logs begin at Tue 2021-06-01 19:54:51 UTC, end at Wed 2021-06-02 02:26:51 UTC. --
Jun 01 20:11:02 6-Ubuntu-20 systemd[1]: Starting Caddy...
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: caddy.HomeDir=/var/lib/caddy
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: caddy.AppDataDir=/var/lib/caddy/.local/share/caddy
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: caddy.AppConfigDir=/var/lib/caddy/.config/caddy
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: caddy.ConfigAutosavePath=/var/lib/caddy/.config/caddy/autosave.json
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: caddy.Version=v2.4.1 h1:kAJ0JB5Xk5gPdTH/27S5cyoMGqD5lBAe9yZ8zTjVJa0=
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: runtime.GOOS=linux
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: runtime.GOARCH=amd64
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: runtime.Compiler=gc
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: runtime.NumCPU=1
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: runtime.GOMAXPROCS=1
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: runtime.Version=go1.16.4
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: os.Getwd=/
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: LANG=C.UTF-8
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: NOTIFY_SOCKET=/run/systemd/notify
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: HOME=/var/lib/caddy
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: LOGNAME=caddy
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: USER=caddy
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: INVOCATION_ID=7e953732508b4c5b809fbeb6485feebe
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: JOURNAL_STREAM=9:47271
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622578262.718147,"msg":"using provided configuration","config_file":"/etc/caddy/Caddyfile","config_adapter":""}
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622578262.7223623,"logger":"admin","msg":"admin endpoint started","address":"tcp/localhost:2019","enforce_origin":false,"ori
gins":["localhost:2019","[::1]:2019","127.0.0.1:2019"]}
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622578262.7228007,"logger":"http","msg":"server is listening only on the HTTP port, so no automatic HTTPS will be applied to
this server","server_name":"srv0","http_port":80}
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622578262.7248158,"msg":"autosaved config (load with --resume flag)","file":"/var/lib/caddy/.config/caddy/autosave.json"}
Jun 01 20:11:02 6-Ubuntu-20 systemd[1]: Started Caddy.
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622578262.7335143,"logger":"tls.cache.maintenance","msg":"started background certificate maintenance","cache":"0xc000255420"}
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622578262.7337933,"logger":"tls","msg":"cleaning storage unit","description":"FileStorage:/var/lib/caddy/.local/share/caddy"}
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622578262.7343671,"logger":"tls","msg":"finished cleaning storage units"}
Jun 01 20:11:02 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622578262.7366085,"msg":"serving initial configuration"}
Jun 01 23:37:32 6-Ubuntu-20 systemd[1]: Reloading Caddy.
Jun 01 23:37:32 6-Ubuntu-20 caddy[15443]: {"level":"info","ts":1622590652.7544327,"msg":"using provided configuration","config_file":"/etc/caddy/Caddyfile","config_adapter":""}
Jun 01 23:37:32 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590652.7609093,"logger":"admin.api","msg":"received request","method":"POST","host":"localhost:2019","uri":"/load","remote_addr":"127.0.0.1:35860","headers":{"Accept-Encoding":["gzip"],"Content-Length":["256"],"Content-Type":["application/json"],"Origin":["localhost:2019"],"User-Agent":["Go-http-client/1.1"]}}
Jun 01 23:37:32 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590652.7634828,"logger":"admin","msg":"admin endpoint started","address":"tcp/localhost:2019","enforce_origin":false,"origins":["[::1]:2019","127.0.0.1:2019","localhost:2019"]}
Jun 01 23:37:32 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590652.7641997,"logger":"http","msg":"server is listening only on the HTTPS port but has no TLS connection policies; adding one to enable TLS","server_name":"srv0","https_port":443}
Jun 01 23:37:32 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590652.764419,"logger":"http","msg":"enabling automatic HTTP->HTTPS redirects","server_name":"srv0"}
Jun 01 23:37:32 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590652.7660558,"logger":"http","msg":"enabling automatic TLS certificate management","domains":["6.synthfleshop.casa"]}
Jun 01 23:37:32 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590652.767098,"logger":"tls.cache.maintenance","msg":"started background certificate maintenance","cache":"0xc0002544d0"}
Jun 01 23:37:32 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590652.7696478,"logger":"tls.obtain","msg":"acquiring lock","identifier":"6.synthfleshop.casa"}
Jun 01 23:37:32 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590652.7744827,"logger":"tls.obtain","msg":"lock acquired","identifier":"6.synthfleshop.casa"}
Jun 01 23:37:32 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590652.7810853,"logger":"tls.cache.maintenance","msg":"stopped background certificate maintenance","cache":"0xc000255420"}
Jun 01 23:37:32 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590652.7814288,"msg":"autosaved config (load with --resume flag)","file":"/var/lib/caddy/.config/caddy/autosave.json"}
Jun 01 23:37:32 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590652.7822902,"logger":"admin.api","msg":"load complete"}
Jun 01 23:37:32 6-Ubuntu-20 systemd[1]: Reloaded Caddy.
Jun 01 23:37:32 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590652.7889054,"logger":"admin","msg":"stopped previous server","address":"tcp/localhost:2019"}
Jun 01 23:37:33 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590653.772764,"logger":"tls.issuance.acme","msg":"waiting on internal rate limiter","identifiers":["6.synthfleshop.casa"]
Jun 01 23:37:33 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590653.7734945,"logger":"tls.issuance.acme","msg":"done waiting on internal rate limiter","identifiers":["6.synthfleshop.casa"]}
Jun 01 23:37:34 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590654.2323594,"logger":"tls.issuance.acme.acme_client","msg":"trying to solve challenge","identifier":"6.synthfleshop.casa","challenge_type":"http-01","ca":"https://acme-v02.api.letsencrypt.org/directory"}
Jun 01 23:37:34 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590654.7943099,"logger":"tls.issuance.acme","msg":"served key authentication","identifier":"6.synthfleshop.casa","challenge":"http-01","remote":"66.133.109.36:16672","distributed":false}
Jun 01 23:37:34 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590654.7966096,"logger":"tls.issuance.acme","msg":"served key authentication","identifier":"6.synthfleshop.casa","challenge":"http-01","remote":"3.120.130.29:23518","distributed":false}
Jun 01 23:37:35 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590655.0438855,"logger":"tls.issuance.acme","msg":"served key authentication","identifier":"6.synthfleshop.casa","challenge":"http-01","remote":"3.19.56.43:26126","distributed":false}
Jun 01 23:37:35 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590655.6391523,"logger":"tls.issuance.acme","msg":"served key authentication","identifier":"6.synthfleshop.casa","challenge":"http-01","remote":"54.189.22.122:29628","distributed":false}
Jun 01 23:37:36 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590656.0830436,"logger":"tls.issuance.acme.acme_client","msg":"validations succeeded; finalizing order","order":"https://acme-v02.api.letsencrypt.org/acme/order/125637358/10109995007"}
Jun 01 23:37:37 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590657.233821,"logger":"tls.issuance.acme.acme_client","msg":"successfully downloaded available certificate chains","count":2,"first_url":"https://acme-v02.api.letsencrypt.org/acme/cert/030e37a3aef4c697135930629f6ba82b1a74"}
Jun 01 23:37:37 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590657.2350888,"logger":"tls.obtain","msg":"certificate obtained successfully","identifier":"6.synthfleshop.casa"}
Jun 01 23:37:37 6-Ubuntu-20 caddy[11304]: {"level":"info","ts":1622590657.2353427,"logger":"tls.obtain","msg":"releasing lock","identifier":"6.synthfleshop.casa"}
/lib/systemd/system/caddy.service
[Unit]
Description=Caddy
Documentation=https://caddyserver.com/docs/
After=network.target network-online.target
Requires=network-online.target
[Service]
Type=notify
User=caddy
Group=caddy
ExecStart=/usr/bin/caddy run --environ --config /etc/caddy/Caddyfile
ExecReload=/usr/bin/caddy reload --config /etc/caddy/Caddyfile
TimeoutStopSec=5s
LimitNOFILE=1048576
LimitNPROC=512
PrivateTmp=true
ProtectSystem=full
AmbientCapabilities=CAP_NET_BIND_SERVICE
[Install]
WantedBy=multi-user.target