New SWAG container, getting authentication error

Hi there. Just pulled the (only, first) swag container and upped with docker-composer. My domain A record points to my server, and telnet to port 80 from outside works well. I get the following error:
Certbot failed to authenticate some domains (authenticator: standalone). The Certificate Authority reported these problems:
Domain: mydomain.com
Type: unauthorized
Detail: xx.xxx.xx.xxx: Invalid response from … mydomain.com .well-known acme-challenge/H6W3nBmLmr8t_H8S6_pX2ek1BS1MJQOCw6zqsHE6bZ8 404

Hint: The Certificate Authority failed to download the challenge files from the temporary standalone webserver started by Certbot on port 80. Ensure that the listed domains point to this machine and that it can accept inbound connections from the internet.

Please advise! TIA

13 - VALIDATION=http
14 - SUBDOMAINS= #optional
15 - CERTPROVIDER= #optional
16 - DNSPLUGIN=cloudflare #optional
17 - PROPAGATION= #optional
18 - EMAIL= #optional
19 - ONLY_SUBDOMAINS=true #optional
20 - EXTRA_DOMAINS= #optional
21 - STAGING=false #optional

provide your docker run or docker compose and your full container logs starting with our ascii logo

why are you using http validation with cloudflare?

I use defaults - pls suggest better validation parameters

i suggest dns validation for cloudflare; i further suggest reading the swag documentation.

Thank you for the suggestions. I have studied the documentation. My domain provider is not compatible with cloudflare, I’m not able to get the auth from there. What else could I use?

you are the one who put your dnsprovider as cloudflare…
16 - DNSPLUGIN=cloudflare #optional
so back to once again, provide your docker run or docker compose and full container logs beginning with our ascii logo

True! Put cloudflare there bcs that was the default. Pls let me try sg else before I post the obviously false yml and log: what should I use for VALIDATION and DNSPLUGIN if I am not able to use Cloudflare for auth? I can modify all DNS records at my domain provider but can not delegate the domain to cloudflare…

OK, I tried to change some parameters.

services:
swag:
image: lscr.io/linuxserver/swag:latest
container_name: swag
cap_add:
- NET_ADMIN
environment:
- PUID=501
- PGID=20
- TZ=Europe/Budapest
- URL=myd.com
- VALIDATION=http
- SUBDOMAINS= #optional
- CERTPROVIDER= #optional
- DNSPLUGIN= #optional
- PROPAGATION= #optional
- EMAIL= my@email
- ONLY_SUBDOMAINS=false #optional
- EXTRA_DOMAINS= #optional
- STAGING=false #optional
volumes:
- /Users/me/docker/swag/config:/config
ports:
- 443:443
- 80:80 #optional
restart: unless-stopped

swag | [migrations] started
swag | [migrations] 01-nginx-site-confs-default: skipped
swag | [migrations] done
swag | usermod: no changes
swag | ───────────────────────────────────────
swag |
swag | ██╗ ███████╗██╗ ██████╗
swag | ██║ ██╔════╝██║██╔═══██╗
swag | ██║ ███████╗██║██║ ██║
swag | ██║ ╚════██║██║██║ ██║
swag | ███████╗███████║██║╚██████╔╝
swag | ╚══════╝╚══════╝╚═╝ ╚═════╝
swag |
swag | Brought to you by linuxserver.io
swag | ───────────────────────────────────────
swag |
swag | To support the app dev(s) visit:

swag |
swag | To support LSIO projects visit:

swag |
swag | ───────────────────────────────────────
swag | GID/UID
swag | ───────────────────────────────────────
swag |
swag | User UID: 501
swag | User GID: 20
swag | ───────────────────────────────────────
swag | Linuxserver.io version: 3.0.1-ls345
swag | Build-date: 2024-12-21T03:29:30+00:00
swag | ───────────────────────────────────────
swag |
swag | using keys found in /config/keys
swag | Variables set:
swag | PUID=501
swag | PGID=20
swag | TZ=Europe/Budapest
swag | URL=myd.com
swag | SUBDOMAINS=
swag | EXTRA_DOMAINS=
swag | ONLY_SUBDOMAINS=false
swag | VALIDATION=http
swag | CERTPROVIDER=
swag | DNSPLUGIN=
swag | EMAIL= my@mail
swag | STAGING=false
swag |
swag | find: ‘/var/lib/letsencrypt’: No such file or directory
swag | find: ‘/var/log/letsencrypt’: No such file or directory

I am new user, restricted to 2 links per post - not easy to supply the log…

swag | **** Permissions could not be set. This is probably because your volume mounts are remote or read-only. ****
swag | **** The app may not work properly and we will not provide support for it. ****
swag | Using Let’s Encrypt as the cert provider
swag | E-mail address entered: my@mail
swag | http validation is selected
swag | Generating new certificate
swag | usage:
swag | certbot [SUBCOMMAND] [options] [-d DOMAIN] [-d DOMAIN] …
swag |
swag | Certbot can obtain and install HTTPS/TLS/SSL certificates. By default,
swag | it will attempt to use a webserver both for obtaining and installing the
swag | certificate.
swag | certbot: error: unrecognized arguments: --dns–credentials=/config/dns-conf/.ini
swag | ERROR: Cert does not exist! Please see the validation error above. The issue may be due to incorrect dns or port forwarding settings. Please fix your settings and recreate the container

remove the fields you’re not using, you are causing issues by passing empty things you dont need. i suggest reading the swag documentation. if you need further assistance, i would encourage you to come on our discord.