.well-known directory deleted after certificate renew #196

New Issue

MrUnknownDE · 2026-04-05T20:25:49+02:00

MrUnknownDE commented

2026-04-05 20:25:49 +02:00

Originally created by @ivancarlosti on 8/16/2024

CloudPanel version(s) affected

2.2.0
2.4.0
2.4.2

Description

.well-known directory is deleted from virtual hosts after certificate renew. This folder is used for several services as standard path, so a workaround is not the proper solution for that, it's not only used to issue certificates.
As example, there's a list of services that uses this folder as standard path:

BIMI (Brand Indicators for Message Identification)
LNURLp (Lightning Network payment)
Nostr (Domain validation for Nostr Network)
PKI Validation (default path used by some certification authorities)
security.txt (Security information proposed standard for websites)
Android/iOS Deep Links (App standard path for mobile deep link applications)

In some cases, CORS rules is also required, what makes rewrite paths more difficult

It's also well documented in IANA several usages for this folder: https://www.iana.org/assignments/well-known-uris/

Please fix this 😟 look Possible Solution section below.

How to reproduce

Store anything on .well-known folder
Renew certificate
.well-known folder is gone

Possible Solution

Let's Encrypt only uses the path .well-known/acme-challenge, so please just delete acme-challenge subfolder.

Additional Context

No response

*Originally created by @ivancarlosti on 8/16/2024* ### CloudPanel version(s) affected [2.2.0](https://github.com/cloudpanel-io/cloudpanel-ce/issues/230) [2.4.0](https://github.com/cloudpanel-io/cloudpanel-ce/issues/439) 2.4.2 ### Description **.well-known** directory is deleted from virtual hosts after certificate renew. This folder is used for several services as standard path, so a workaround is not the proper solution for that, it's not only used to issue certificates. As example, there's a list of services that uses this folder as standard path: - BIMI (Brand Indicators for Message Identification) - LNURLp (Lightning Network payment) - Nostr (Domain validation for Nostr Network) - PKI Validation (default path used by some certification authorities) - security.txt (Security information proposed standard for websites) - Android/iOS Deep Links (App standard path for mobile deep link applications) In some cases, CORS rules is also required, what makes rewrite paths more difficult It's also well documented in IANA several usages for this folder: https://www.iana.org/assignments/well-known-uris/ Please fix this 😟 look Possible Solution section below. ### How to reproduce Store anything on .well-known folder Renew certificate **.well-known** folder is gone ### Possible Solution Let's Encrypt only uses the path **.well-known/acme-challenge**, so please just delete **acme-challenge** subfolder. ### Additional Context _No response_

MrUnknownDE closed this issue

2026-04-05 20:25:49 +02:00

MrUnknownDE added the bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug bug labels 2026-04-05 20:25:51 +02:00

Sign in to join this conversation.

1 Participants

Notifications

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github/cloudpanel-ce#196