Set up an SSL cert for httparchive.org

Question

Set up an SSL cert for httparchive.org

rviscomi opened this issue 7 years ago · 9 comments

I hear that HTTPS thing is getting popular.

Answer 1 · 2017-09-05T20:54:15.000Z

I've set up lets-encrypt on WPT and it should be easy enough to do on HA with the nginx support. Only complication is the nginx server reverse-proxies the HA requests to an apache server so not sure if the webroot will "just work" or if it will need a few tweaks.

Answer 2 · 2017-09-05T21:04:47.000Z

I just gave certbot a whirl and it failed to download a bunch of dependencies, which I think is a symptom of our version of Ubuntu being old.

The beta site is hosted on App Engine and the current site will become old.httparchive.org or something, so maybe it makes more sense to wait for the musical subdomains to settle down before setting up certs.

Answer 3 · 2017-09-06T02:59:54.000Z

Yeah, I'd focus on HTTPS for the new (GAE-powered) site, with a view that we want to sunset current site asap -- lack of HTTPS being one of many reasons.

Answer 4 · 2017-09-12T22:39:16.000Z

TODO:

migrate the beta site from its own GAE project to the primary httparchive project
set up a wildcard cert for GAE-hosted sites, to support the beta site in both dev (beta.httparchive.org) and prod (httparchive.org) stages

Answer 5 · 2018-01-09T16:43:53.000Z

TODO(self): Need to confirm that the cert for the beta subdomain will work when it becomes the primary domain. If so this issue is ok to close.

Answer 6 · 2018-02-21T22:56:55.000Z

The legacy server is https now (httparchive.org, www, dev, desktop, mobile, chrome)

Answer 7 · 2018-03-23T21:10:51.000Z

Pat, I set up a new A record for legacy.httparchive.org. Is the https cert a wildcard?

Answer 8 · 2018-03-23T22:07:28.000Z

No. Should be able to be added with certbot (I'll do it on Monday)

Answer 9 · 2018-03-24T18:58:52.000Z

Cert has been expanded