This issue was moved to a discussion.
You can continue the conversation there. Go to discussion →
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Feature Request]: Self-signed CA suggestion #55
Comments
a self-signed certificate is required if you're making a Shopify app |
There is already a self-signed certificate available within Herd when you secure the sites. The issue is that the CA isn't trusted by browsers (specifically Firefox) or there may be another reason you need the CA. This was just a suggestion to make the location of that obvious within the app or docs should you want to trust it on your local system. |
I typed up these instructions for my internal team. Feel free to use them if it makes any of this easier: Keychain (This covers most browsers, including Chrome, Safari, and the Laravel HTTP facade)
Firefox
If they were secured, Firefox would only open the sites for me once I did this. Updated 11/8/23 based on below comments and other feedback received outside of this thread |
This also applies to anyone who runs multiple services with herd and wants to do inter-service communication (like an auth service) via https. Another way to easily find the file is to use the Thanks for reporting/finding! EDIT: |
@kauffinger Thanks for the input. I updated my instructions to include your note about finding the folder and made a few changes from comments outside of this thread. Additionally, it looks like this manifests as |
This issue was moved to a discussion.
You can continue the conversation there. Go to discussion →
Feature Description
A simple way to find the CA certificate for installing/trusting would be helpful. The path could be listed under "General" or "About" inside Settings, with a button that opens Finder in that directory.
Barring that, updating the documentation under "Securing" would probably suffice.
Is this feature valuable for other users as well and why?
TL;DR: Sometimes, you need to install a CA cert manually, and a way to quickly find where it is could help people.
When I tried to secure a site with Herd, I didn't get the typical "This site is dangerous; are you sure?" dialog. Instead getting: "Secure Connection Failed ... Error code: SEC_ERROR_BAD_SIGNATURE" which Firefox would not allow me to continue past. Installing the root certificate into Firefox fixed the issue, but I had to dive into the Application Support folder to determine where it was. My concern is that there are or will be others with similar/the same issue who wouldn't know where to find the certificate to install it manually.
Of note, this is not an issue with Chrome (and presumably Safari), but some people may still want to install the CA and need help finding it.
The text was updated successfully, but these errors were encountered: