Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Let's Encrypt untrusted cert #877

Open
allain opened this issue Apr 10, 2017 · 1 comment
Open

Let's Encrypt untrusted cert #877

allain opened this issue Apr 10, 2017 · 1 comment

Comments

@allain
Copy link

allain commented Apr 10, 2017

Server version: 2.0.0
Client version: 2.0.0

It would appear that let's encrypt needs me to specify the chain.pem file as well as the private key and cert.

When configuring apache all 3 files need to be specified:
SSLCertificateFile /etc/letsencrypt/live/$DOMAIN/cert.pem
SSLCertificateKeyFile /etc/letsencrypt/live/$DOMAIN/privkey.pem
SSLCertificateChainFile /etc/letsencrypt/live/$DOMAIN/chain.pem

I think adding ca_file might be needed and it'd pass in ca: ... to

horizon/cli/src/serve.js

Line 292 in a11ac62

return initialize_servers(() => new https.Server({ key, cert }), opts);

@allain
Copy link
Author

allain commented Apr 11, 2017

I've confirmed that passing in ca resolves the issue when using horizon in an embedded context.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@allain