Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor

  • Default (No Skin)
  • No Skin
Collapse

Cloudron Forum

Apps | Demo | Docs | Install

Is there a way to insert a CA Bundle chain for a domain?

Scheduled Pinned Locked Moved Solved Support
certificates
3 Posts 3 Posters 138 Views
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • LonkleL Offline
    LonkleL Offline
    Lonkle
    wrote on last edited by girish
    #1

    There's the cert field, the key field, but no CA field. The CA field is uncommonly used but really important when you're building an internal web app. Is there a work around for this, or would this require adding the third SSL Certification field for the domain?

    1 Reply Last reply
    0
  • nebulonN Online
    nebulonN Online
    nebulon Staff
    wrote on last edited by
    #2

    There is currently no way to upload the CA chain as such. I am no expert there, but I think there are some more extensive bundle formats, which contain everything at once? Maybe we can replace the two fields and just make the api accept a bundle and in case maybe extracts the portions for nginx?

    1 Reply Last reply
    0
  • girishG Do not disturb
    girishG Do not disturb
    girish Staff
    wrote on last edited by
    #3

    @iJoel You can do this by simply concatenating the intermediate and CA cert files into a single cert file.

    So, in the '.crt' file which you upload to Cloudron, it will have:

    -----BEGIN CERTIFICATE-----
    the *.foo.com certificate
    -----END CERTIFICATE-----
    -----BEGIN CERTIFICATE-----
    intermediate cert
    -----END CERTIFICATE-----
    -----BEGIN CERTIFICATE-----
    root cert if any
    -----END CERTIFICATE-----
    

    The ordering of the certs is important above.

    1 Reply Last reply
    0

  • Login

  • Don't have an account? Register

  • Login or register to search.
  • First post
    Last post
0
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
  • Login

  • Don't have an account? Register

  • Login or register to search.