Maurice
When a certificate is issued for a tenant, the generated file /etc/nginx/ploi/www.site.com/tenants/www.domain.com-ssl-redirect.conf
only contains a redirect for the tenant's domain from http to https, but not for all domains for which the certificate was issued. This leads to 404 errors if an attempt is made to access a domain via http that is not the name of the tenant.
Example/Reproduction:
- Create a tenant for www.domain.com
- Customize the tenant's server name so that it listens to www.domain.com and domain.com
- Issue a certificate for www.domain.com,domain.com.
- Go to http://domain.com and you will get a 404 error.
Fix:
Instead of using the tenant's domain for the redirect from http to https, all domains of the certificate should be used in server_name
for the redirect config.
Maurice
Item author@Dennis The wrong redirect.conf unfortunately also effects certifcate renewals. They fail, if the certificate was issued for more than one domain.
Alan Mosko
There should already be this feature for handling tenants with and without www, it's really bad to have to add both for it to work for the client. There could be a parameter to add both or just one of the modes via the API.
Missing http redirect for tenants results in 404 error
-
Dennis moved item to board Planned
1 year ago -
Maurice moved item to project Site Level Requests
1 year ago -
Maurice created the item
1 year ago