-
-
Notifications
You must be signed in to change notification settings - Fork 2.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
gdal.org SSL_ERROR_BAD_CERT_DOMAIN #1574
Comments
I think this is something @hobu needs to look at |
I looked into the problem a little. It's fine for https://gdal.org but breaks on https://www.gdal.org Search engines have the www variant in them. Looking at the github docs on the topic https://help.github.com/en/articles/using-a-custom-domain-with-github-pages
So fix needs to be applied at the DNS registration/server level. |
FWIW deegree.org ran into the same issue when switching to github pages. Their solution seems a bit suboptimal -- but not sure if anything in github would allow you to have the letsencrypt cert work for both gdal.org and www.gdal.org Related ticket
|
Yes, we had the same issue with https://openstreetmap.be/. |
If everyone is amenable with that change -- I could just put in an https://www.gdal.org to go to https://gdal.org (could even proxy it if that's more desirable) At very least - we probably should get rid of the static ip of github pages because I fear that will fail suddenly for round-robin or if github changes their ip. Right now looking at pairs it's set to ip instead of CNAME. |
disregard my comment about the A record, I see now from Alex's link that that part is okay and that's why we have 4 A's as described here since they resolve to all the possible github page locations https://help.github.com/en/articles/setting-up-an-apex-domain not sure if there is a better fix for the letsencrypt as @jbelien mentioned. Maybe worth a github bug ticket as it seems like a pretty common thing to want to do. |
ah wait -- is gdal setup like this in githubpages?
as described in: https://help.github.com/en/articles/about-supported-custom-domains If it's put in as two separate entries, then maybe that's the problem why the letsencrypt only works for one of them. |
@robe2 Yes but ...
Source: https://help.github.com/en/articles/setting-up-an-apex-domain-and-www-subdomain |
Issue solved per https://trac.osgeo.org/osgeo/ticket/2311 |
There is an issue with your SSL certificate for https://www.gdal.org/.
SSL certificate is issued for the following (
www.github.com, *.github.io, *.githubusercontent.com, *.github.com, github.com, github.io, githubusercontent.com
) and so is not valid forgdal.org
.The text was updated successfully, but these errors were encountered: