I also hit this.
I removed this (by commenting it out):
after_ssl:
# - replace:
# filename: "/etc/runit/1.d/letsencrypt"
# from: /--keylength/
# to: "-d example.com --keylength"
# - replace:
# filename: "/etc/nginx/conf.d/discourse.conf"
# from: /return 301 https.+/
# to: |
# return 301 https://$host$request_uri;
and added this in the run section at the bottom as per @pfaffman
- exec: sed -i "s|-d \${DISCOURSE_HOSTNAME}|-d \${DISCOURSE_HOSTNAME} -d www.\${DISCOURSE_HOSTNAME}|g" /usr/local/bin/letsencrypt
This appears to have been enough for me:
- the site rebuilt and apparently appears to have valid certs
- the redirection from apex to www is working
Thanks @pfaffman!