I also needed to comment out these two lines by adding # to force https.
umbrel@umbrel:~ $ sudo nano /etc/nginx/sites-available/btcpay
#listen 15080;
#listen [::]:15080;
then restart server.
umbrel@umbrel:~ $ sudo systemctl reload nginx.service
2 Likes
Thank you for this, I used the corrected command and then made this change: https://github.com/getumbrel/umbrel/issues/1428#issuecomment-1184603006
Didn’t need to comment out the HTTP port listens per your second post.
1 Like
Did you figure out a solution to this, I have the exact problem and when doing that command get the same warning.
Thank you!
Thanks @jorijn for the excellent guide, I went through all the steps but now I can not get to connect over https, http works fine but as you know I can not login.
Any ideas, also I noticed that on the last part where we have to force https, if I use the listen 15080 it does not even work on http I have to use 15443.
Anybody has any ideas what could be wrong.
I also applied the fix for version 0.5 an above so the config file is there.
Thanks!
Hi, how did you get the redirection to work?
Hello,
I followed your guide, and got everything working so far, but one thing concerns me.
I have a static IP address. Now when I type in my IP (or the Domain name I pointed to that IP) in the browser, im on the login page of the btcpay server.
So that means everybody can reach that page. I can also click on forgot password, and it offers to send an email for a password reset. I tried it with my mail, and never got an email. Still, I dont think its right to have the login page for the btcpay server accessible to everybody.
Did I do something wrong with the setup, (maybe port-forwarding isnt right) or is it expected to be this way?
thanks for any help or advice!
Hi @jorijn
So far your SSL certificate installation has worked wonderfully. Unfortunately, I recently had to re-flash the SD card and then also set up the SSL again. Unfortunately I keep getting stuck at point 6 Certificate from letsencrypt. The error message is as follows:
umbrel@umbrel:~ $ sudo certbot --nginx -d btcpay.xxxxx.xx -m myemail@xxxx.xx --agree-tos --tls-sni-01-port 15443 --http-01-port 15080
Traceback (most recent call last):
File “/usr/bin/certbot”, line 11, in
load_entry_point(‘certbot==0.31.0’, ‘console_scripts’, ‘certbot’)()
File “/usr/lib/python3/dist-packages/pkg_resources/init.py”, line 489, in load_entry_point
return get_distribution(dist).load_entry_point(group, name)
File “/usr/lib/python3/dist-packages/pkg_resources/init.py”, line 2793, in load_entry_point
return ep.load()
File “/usr/lib/python3/dist-packages/pkg_resources/init.py”, line 2411, in load
return self.resolve()
File “/usr/lib/python3/dist-packages/pkg_resources/init.py”, line 2417, in resolve
module = import(self.module_name, fromlist=[‘name’], level=0)
File “/usr/lib/python3/dist-packages/certbot/main.py”, line 10, in
import josepy as jose
File “/usr/lib/python3/dist-packages/josepy/init.py”, line 44, in
from josepy.interfaces import JSONDeSerializable
File “/usr/lib/python3/dist-packages/josepy/interfaces.py”, line 8, in
from josepy import errors, util
File “/usr/lib/python3/dist-packages/josepy/util.py”, line 4, in
import OpenSSL
File “/usr/lib/python3/dist-packages/OpenSSL/init.py”, line 8, in
from OpenSSL import crypto, SSL
File “/usr/lib/python3/dist-packages/OpenSSL/crypto.py”, line 1553, in
class X509StoreFlags(object):
File “/usr/lib/python3/dist-packages/OpenSSL/crypto.py”, line 1573, in X509StoreFlags
CB_ISSUER_CHECK = _lib.X509_V_FLAG_CB_ISSUER_CHECK
AttributeError: module ‘lib’ has no attribute ‘X509_V_FLAG_CB_ISSUER_CHECK’
umbrel@umbrel:~ $
What am I doing wrong?
best regards, jurgi
This is a great guide, its been very helpful. I’m a super noob and have fumbled my way through this thanks to all the great info available.
Q: I have two umbrel nodes and want to use one for a family member’s business (BTCPay server and lightning node) and one for personal business. How do I set up the ports so btcpay.mybusiness.com goes to my umbrel and btcpay.familymembersbusiness.com goes to ‘theirs’? I presume I just pick a different set of ports like 90 &15090 and 453&15453?
Appreciate the help
Did anyone try the last guide of BTCPay to expose on the clearnet using cloudflare?
This is the guide: Cloudflare tunnel support | BTCPay Server
Same question, been trying to get this to work with no luck.
How to set up BTCpay Sever using Cloudflare Tunnels:
Excellent post by @x11r0n 