From 5796b7ddc382c80c9cc55a9f8d312e2ac87a817c Mon Sep 17 00:00:00 2001
From: Yury Hrytsuk <50014626+YuryHrytsuk@users.noreply.github.com>
Date: Wed, 18 Oct 2023 13:20:31 +0200
Subject: [PATCH] Remove letsencrypt dns challenge propagation delay (#396)

* Return removed staging CA for letsenrypt

* Remove DNS challenge delay before check

* Delete commented lines
---
 services/traefik/docker-compose.aws.yml    | 1 -
 services/traefik/docker-compose.dalco.yml  | 1 -
 services/traefik/docker-compose.master.yml | 1 -
 services/traefik/docker-compose.public.yml | 1 -
 4 files changed, 4 deletions(-)

diff --git a/services/traefik/docker-compose.aws.yml b/services/traefik/docker-compose.aws.yml
index f32e0f21..04da8149 100644
--- a/services/traefik/docker-compose.aws.yml
+++ b/services/traefik/docker-compose.aws.yml
@@ -24,7 +24,6 @@ services:
       - "--providers.docker.constraints=!LabelRegex(`io.simcore.zone`, `.+`)"
       - "--entryPoints.https.forwardedHeaders.insecure"
       - "--certificatesresolvers.myresolver.acme.dnschallenge.provider=route53"
-      - "--certificatesresolvers.myresolver.acme.dnschallenge.delaybeforecheck=120"
       - "--certificatesresolvers.myresolver.acme.email=${OSPARC_DEVOPS_MAIL_ADRESS}"
       - "--certificatesresolvers.myresolver.acme.storage=/letsencrypt/acme.json"
     #  - "--certificatesresolvers.lehttpchallenge.acme.httpchallenge=true"
diff --git a/services/traefik/docker-compose.dalco.yml b/services/traefik/docker-compose.dalco.yml
index cee5583e..d1c5cc83 100644
--- a/services/traefik/docker-compose.dalco.yml
+++ b/services/traefik/docker-compose.dalco.yml
@@ -26,7 +26,6 @@ services:
       - "--providers.docker.constraints=!LabelRegex(`io.simcore.zone`, `.+`)"
       - "--entryPoints.https.forwardedHeaders.insecure"
       - "--certificatesresolvers.myresolver.acme.dnschallenge.provider=rfc2136"
-      - "--certificatesresolvers.myresolver.acme.dnschallenge.delaybeforecheck=120"
       - "--certificatesresolvers.myresolver.acme.email=${OSPARC_DEVOPS_MAIL_ADRESS}"
       - "--certificatesresolvers.myresolver.acme.storage=/letsencrypt/acme.json"
       # For debug purpose, to avoid being ban by let's encrypt servers
diff --git a/services/traefik/docker-compose.master.yml b/services/traefik/docker-compose.master.yml
index f86e2289..84858cde 100644
--- a/services/traefik/docker-compose.master.yml
+++ b/services/traefik/docker-compose.master.yml
@@ -25,7 +25,6 @@ services:
       - "--providers.docker.constraints=!LabelRegex(`io.simcore.zone`, `.+`)"
       - "--entryPoints.https.forwardedHeaders.insecure"
       - "--certificatesresolvers.myresolver.acme.dnschallenge.provider=rfc2136"
-      - "--certificatesresolvers.myresolver.acme.dnschallenge.delaybeforecheck=120"
       - "--certificatesresolvers.myresolver.acme.email=${OSPARC_DEVOPS_MAIL_ADRESS}"
       - "--certificatesresolvers.myresolver.acme.storage=/letsencrypt/acme.json"
       # For debug purpose, to avoid being ban by let's encrypt servers
diff --git a/services/traefik/docker-compose.public.yml b/services/traefik/docker-compose.public.yml
index 6ebb3078..98a94d01 100644
--- a/services/traefik/docker-compose.public.yml
+++ b/services/traefik/docker-compose.public.yml
@@ -27,7 +27,6 @@ services:
       - "--entryPoints.https.forwardedHeaders.insecure"
       - "--certificatesresolvers.myresolver.acme.dnschallenge.provider=rfc2136"
       - "--certificatesresolvers.myresolver.acme.email=${OSPARC_DEVOPS_MAIL_ADRESS}"
-      - "--certificatesresolvers.myresolver.acme.dnschallenge.delaybeforecheck=120"
       - "--certificatesresolvers.myresolver.acme.storage=/letsencrypt/acme.json"
       # For debug purpose, to avoid being ban by let's encrypt servers
       #- "--certificatesresolvers.myresolver.acme.caserver=https://acme-staging-v02.api.letsencrypt.org/directory"