-
Notifications
You must be signed in to change notification settings - Fork 98
Letsencrypt for both PHABRICATOR_HOST and PHABRICATOR_CDN #30
Comments
Can you give me a startup log? What does Let's Encrypt output? Does the Let's Encrypt startup work for |
Yes, it works for PHABRICATOR_HOST, but 15-https is missing PHABRICATOR_CDN mentions at all. So the installation now tuns ok with https but without the PHABRICATOR_CDN option. If I enable the PHABRICATOR_CDN option when I point another domain to the same machine and open the PHABRICATOR_HOST url, css and images are missing, so the web part of phabricator becomes unusable. If I open some css file from the PHABRICATOR_CDN, the browser comes up with the "Security issue, that's a trap, run for your life!" message. Changing https to http gives me the correct css file. So, I checked nginx.conf and read the nginx docs. It seems that the easiest way would be the alternateDomainName option that incorporates several domains into one file. If I enable the PHABRICATOR_CDN option the 15-https log portion is the following:
UPD: it's actually the same in logs if I disable it. Sometimes the log contains no errors. |
Support for this is being worked on. |
This is now implemented in the latest version. |
As far as I understand, I can point the PHABRICATOR_CDN to another domain that points to the same machine to serve files from another domain but from this machine and this should do the security trick since we're not authorized on the alternate domain.
I'm using letsencrypt way. And the certificates do not not work. I've checked the 15-https file and tried to improve it, but got stuck on --csr option and DER format.
Is it possible to automate the CDN portion with letsencrypt?
The text was updated successfully, but these errors were encountered: