Is there a way to insert a CA Bundle chain for a domain?
Lonk last edited by girish
There's the cert field, the key field, but no CA field. The CA field is uncommonly used but really important when you're building an internal web app. Is there a work around for this, or would this require adding the third SSL Certification field for the domain?
There is currently no way to upload the CA chain as such. I am no expert there, but I think there are some more extensive bundle formats, which contain everything at once? Maybe we can replace the two fields and just make the api accept a bundle and in case maybe extracts the portions for nginx?
@iJoel You can do this by simply concatenating the intermediate and CA cert files into a single cert file.
So, in the '.crt' file which you upload to Cloudron, it will have:
-----BEGIN CERTIFICATE----- the *.foo.com certificate -----END CERTIFICATE----- -----BEGIN CERTIFICATE----- intermediate cert -----END CERTIFICATE----- -----BEGIN CERTIFICATE----- root cert if any -----END CERTIFICATE-----
The ordering of the certs is important above.