Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

subdomain/wildcart certificate #303

Closed
miketaylr opened this issue Oct 7, 2014 · 3 comments
Closed

subdomain/wildcart certificate #303

miketaylr opened this issue Oct 7, 2014 · 3 comments
Assignees
@miketaylr
Labels
type: security type: site-development

Comments

@miketaylr
Copy link
Member

If we want to use the includeSubdomains portion of the HSTS header (and be included in Chrome's HSTS preload list, for example)--we need to be able to support HTTPS for our subdomains. Currently just planet and staging.
@miketaylr miketaylr mentioned this issue Oct 7, 2014
Closed
@miketaylr
Copy link
Member Author

Just gonna close right now. Not sure how important this is in reality.

@miketaylr
Copy link
Member Author

I want to re-open this. subdomain certs are free with letsencrypt and I just set that up for staging.webcompat.com. The plan is to unify all subdomains (planet, staging, www) and webcompat.com. Then we can send includeSubdomains in HSTS.

Unrelated, but I wonder if we shouldn't sunset planet at some point. Some of the feeds it originally contained have died, and it's not advertised anywhere... but, discussion for a meeting or another issue.

@miketaylr miketaylr reopened this Jan 30, 2017
@miketaylr miketaylr self-assigned this Jan 30, 2017
@miketaylr
Copy link
Member Author

This is done now.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@miketaylr miketaylr

Labels
type: security type: site-development
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@miketaylr