...
| Info |
|---|
아래의 절차는 GitLab upgrade 오류시에도 적용할 수 있음 |
실행중인 Docker 컨테이너의 /etc/gitlab/gitlab.rb에서 external_url과 letsencrypt 부분을 변경 (http로 설정)오류 내용
| Code Block |
|---|
external_url 'http://domain.com'
#external_url 'https://domain.com'
# letsencrypt['auto_renew'] = true
# letsencrypt['auto_renew_hour'] = 0
# letsencrypt['auto_renew_minute'] = nil # Should be a number or cron expression, if specified.
# letsencrypt['auto_renew_day_of_month'] = "*/4" |
GitLab의 변경된 구성을 재적용
| Code Block |
|---|
bash~# gitlab-ctl reconfigure |
필요한 조치를 수행
/etc/gitlab/gitlab.rb에서 external_url과 letsencrypt 부분을 변경 (https로 설정)
| Code Block |
|---|
external_url 'http://domain.com'
external_url 'https://domain.com'
letsencrypt['auto_renew'] = true
letsencrypt['auto_renew_hour'] = 0
letsencrypt['auto_renew_minute'] = nil # Should be a number or cron expression, if specified.
letsencrypt['auto_renew_day_of_month'] = "*/4" |
GitLab의 변경된 구성을 재적용
| Code Block |
|---|
bash~# gitlab-ctl reconfigure |
| Info |
|---|
GitLab의 서비스 구동이 정상적으로 되는 것을 확인했지만, 아래의 로그 부분에 대한 트러블 슈팅은 skip 했음 Recipe: letsencrypt::http_authorization * letsencrypt_certificate[gitlab.example.com] action create * acme_certificate[staging] action create * file[gitlab.example.com SSL key] action create_if_missing (up to date) ================================================================================ Error executing action `create` on resource 'acme_certificate[staging]' ================================================================================ Acme::Client::Error::RateLimited -------------------------------- Error creating new account :: too many registrations for this IP: see https://letsencrypt.org/docs/rate-limits/ Cookbook Trace: --------------- /opt/gitlab/embedded/cookbooks/cache/cookbooks/acme/libraries/acme.rb:39:in `acme_client' /opt/gitlab/embedded/cookbooks/cache/cookbooks/acme/libraries/acme.rb:47:in `acme_order_certs_for' /opt/gitlab/embedded/cookbooks/cache/cookbooks/acme/resources/certificate.rb:76:in `block in class_from_file' Resource Declaration: --------------------- suppressed sensitive resource output Compiled Resource: ------------------ suppressed sensitive resource output System Info: ------------ chef_version=15.9.17 platform=ubuntu platform_version=16.04 ruby=ruby 2.6.6p146 (2020-03-31 revision 67876) [x86_64-linux] program_name=/opt/gitlab/embedded/bin/chef-client executable=/opt/gitlab/embedded/bin/chef-client ================================================================================ Error executing action create `create` on resource 'letsencrypt_certificate[gitlab.example.com]' ================================================================================ Acme::Client::Error::RateLimited -------------------------------- acme_certificate[staging] (/opt/gitlab/embedded/cookbooks/cache/cookbooks/letsencrypt/resources/certificate.rb line 25) had an error: Acme::Client::Error::RateLimited: Error creating new account :: too many registrations for this IP: see<https https://letsencrypt.org/docs/rate-limits/> /
|
오류 해결 절차
실행중인 Docker 컨테이너의 /etc/gitlab/gitlab.rb에서 external_url과 letsencrypt 부분을 변경 (http로 설정)
| Code Block |
|---|
external_url 'http://domain.com'
#external_url 'https://domain.com'
# letsencrypt['auto_renew'] = true
# letsencrypt['auto_renew_hour'] = 0
# letsencrypt['auto_renew_minute'] = nil # Should be a number or cron expression, if specified.
# letsencrypt['auto_renew_day_of_month'] = "*/4" |
GitLab의 변경된 구성을 재적용
| Code Block |
|---|
bash~# gitlab-ctl reconfigure |
필요한 조치를 수행
/etc/gitlab/gitlab.rb에서 external_url과 letsencrypt 부분을 변경 (https로 설정)
| Code Block |
|---|
external_url 'http://domain.com'
external_url 'https://domain.com'
letsencrypt['auto_renew'] = true
letsencrypt['auto_renew_hour'] = 0
letsencrypt['auto_renew_minute'] = nil # Should be a number or cron expression, if specified.
letsencrypt['auto_renew_day_of_month'] = "*/4" |
GitLab의 변경된 구성을 재적용
| Code Block |
|---|
bash~# gitlab-ctl reconfigure |
참고 사이트 : https://forum.gitlab.com/t/lets-encrypt-error/32357/13