Let's Encrypt certificates for new domains take too long to obtain
Summary
Found while investigating #35934 (closed)
Steps to reproduce
Very quickly execute these steps
- Add new domain
- verify it
- enable Let's Encrypt ssl
What is the current bug behavior?
It will take up to 24 hours to obtain certificate
What is the expected correct behavior?
The certificate is working under 30 minutes
Output of checks
This bug happens on GitLab.com
Possible fixes
- Remove
acme_orderif they are in invalid state or - Manually reduce expiration time to 15 minutes
cc @ogolowinski @jmeshell @jhampton