Comments on Automatic TLS is now a thing

By: venteria

2024-05-29T20:55:48Z

Thank you!!! Great feature

By: gellenburg

2024-05-18T02:18:45Z

Well look at that. 😉 Niiice! (And sorry for the hassle in the support forums.)

By: jdw

2024-05-17T19:17:07Z

In reply to bendodge.

It waits for DNS to be set up correctly before trying in the first place, then retries fairly aggressively (with exponential backoff) if needed. Much moreso than tls-setup.sh did.

However, we are also still working through the weird edge cases you get when reality doesn’t match the OT&E, and that occasionally leads to delays until we figure it out. That’s likely what you experienced. -jdw

By: bendodge

2024-05-17T18:21:15Z

Deployed a new site with domain’s DNS still pointing at old host. Set up content, then switched over DNS.

Automatic TLS didn’t set up correctly because DNS was wrong. Now that it’s correct, I see no way to retry. Guess I just wait.

Doesn’t this present a problem for anyone attempting a fast cutover between hosting providers?

By: jdw

2024-05-11T14:54:22Z

In reply to Tim McCormack.

That’s correct. That requirement was why we didn’t think we could do this, but it turns out that they’re happy to allow us to do that as long as we’re the ones holding the private keys. -jdw

By: Tim McCormack

2024-05-11T11:34:27Z

Very cool! Thank you so much.

I imagine that the service provider integration also involves Let’s Encrypt waiving their individual Terms & Conditions signoff that they would normally require each user to do (besides any technical integration.)

By: Andrew Guyton

2024-05-11T04:20:48Z

That’s awesome, thank you!!

By: MiquelFire

2024-05-11T03:00:58Z

I was wondering why I saw that icon on one of my sites when I looked today.