Hello,
I have the problem that under certificate field in NGINX plugin like HTTP Server or Upstream.
The dropdown of the certificate is listing the same certificates couple of times and also some deleted certificates are still in the list although they are deleted under ACME Client.
I tried to dig in the files but never figured out the way NGINX plugin is calling the certificates and how they're populated.
I think that the certs are being displayed there multiple of times due to the renewal that is being regarded as multiple certs.
I tried to clean up the directories /usr/local/etc/nginx/key/ and /var/etc/acme-client/ where old certs are still there but that didn't help that NGINX plugin stop displaying multiple certs.
Any tip how I did ended up with that and how can i clean up the multiple entries?
I ended up cleaning the doubled entries from https://fw01.lkd70.com:8443/system_certmanager.php
It would still be great if the entries there got overwritten when the same cert got renewed.
Nginx plugin does get the certificates from the OPNsense core and does not directly interact with the acme plugin unless that it can intercept acme calls to handle the challenges.
I figured this out later. But how does Nginx handle switching to the renewed certificate?
Given that NGINX will list all available certs from core including the renewed one.
Here Nginx will stick with the outdated cert, no?
The setup.php exports the selected certificates by ID. If you want to change it, you have to change the referenced record.