Maurice

Maurice

Planned

When a certificate is issued for a tenant, the generated file /etc/nginx/ploi/www.site.com/tenants/www.domain.com-ssl-redirect.conf only contains a redirect for the tenant's domain from http to https, but not for all domains for which the certificate was issued. This leads to 404 errors if an attempt is made to access a domain via http that is not the name of the tenant.

Example/Reproduction:

  1. Create a tenant for www.domain.com
  2. Customize the tenant's server name so that it listens to www.domain.com and domain.com
  3. Issue a certificate for www.domain.com,domain.com.
  4. Go to http://domain.com and you will get a 404 error.

Fix:

Instead of using the tenant's domain for the redirect from http to https, all domains of the certificate should be used in server_name for the redirect config.

Maurice

Maurice

Item author
· · Edited
·

@Dennis The wrong redirect.conf unfortunately also effects certifcate renewals. They fail, if the certificate was issued for more than one domain.

no votes yet
You may use @ to mention someone.

Missing http redirect for tenants results in 404 error

1 total vote
Maurice
  • Dennis moved item to board Planned

    9 months ago
  • Maurice moved item to project Site Level Requests

    9 months ago
  • Maurice created the item

    9 months ago