I'm trying to get my api hosted on Heroku, to be assigned to a subdomain from GoDaddy hosting.
Here's what I have setup:
The CNAME on GoDaddy:
And my heroku domains:
And when I try to browser a GET endpoint:
I'm using a development Heroku account, which comes with a free automatic ssl cert. I am pretty new to SSL certs, is there anything on need to do on the GoDaddy side besides setup the CNAME?
If I redirect to "imbibe-now.herokuapp.com", the api works, but without https.
Any tips would be appreciated!
Related
We have a wildcard ssl for *.domain.com purchased from GoDaddy. domain.com is a managed wordpress website hosted in GoDaddy.
We also have couple of servers where other websites are hosted as subdomains, api-client1.domain.com, api-client2.domain.com
Currently only subdomains are loading without any errors on https. The main domain is throwing a warning that SSL is expired, though its not.
In order to make sure that the domain and subdomain all load on https, is the below sequence of steps correct?
1) Ask GoDaddy to rectify the problem mentioning that https is not working.
2) After 1 is resolved, Create a CSR from external server, download the certificate from GoDaddy and install it in the external server.
Will the certificate installed by 1 revoked after 2 is done?
Im using hostgator as my host.They do not provide free ssl certificate.So im using cloudflare free ssl certificate for my site.SSL certificate working everywhere except Cpanel.
I tried manually adding ssl through cpanel option.But not really working!Is there any way i can add it there?
Or it will be really good if my cpnael url cpanel.site.com won't just show up to that address.
If you want to use the CloudFlare SSL certificate then there is no need to add that SSL certificate to yoru cpanel nor to your site. Read the cloudflare documentation in order to see how to create and use Page Rules and their SSL certificate. cPanel has nothing to do with it. CF works just fine with cPanel/WHM and pretty much with any other related hosting panel. Your site can be http only in cPnel and then you do the HTTPS redirection from Clouflare using their Flexible SSL and page rules
cpanel.yourdomain.com ssl is related to server side. If your host allow autossl with Let's Encrypt (for example) then it will install ssl for all your necessary subdomains like webmail, cpanel, mail, www etc. If you are installing ssl manually, then you cannot install it for cpanel subdomain. However if you want to use cpanel securely and have enabled ssl with yourdomain.com the you can use it:
https://yourdomain.com:2083
Could someone walk me through how to set up the SSL Certificate that I bought through 1and1 with my Heroku application and my 1and1 domain?
I am able to set it up and it stays active for a few minutes but then goes back to saying unsecured.
Let's call my domain harrison.com. I have a subdomain www.harrison.com. Let's say my heroku app is harrison.herokuapp.com.
What i'm currently doing is changing harrison.com to redirect to www.harrison.com and then changing that cname to harrison.herokussl.com which is currently not working.
Any help would be appreciated.
I believe that I have finally solved this.
I continued to redirect my TLD to the subdomain www, then then set the CNAME of the subdomain to www.my_app_name.com.herokudns.com. After that, I combined the server certificate (obtained from my DNS, 1and1), with the immediate certficate (also from 1and1) into 1 file with a .pem extension.
Finally, I uploaded the .pem certificate and the .key key to Heroku.
I'm working on a Ruby on Rails SaaS app with a custom subdomain for each company. When a company signs up, the user is redirected to her subdomain.myapp.io.
The app is hosted on Heroku and DNS are managed at CloudFlare. I use the free SSL feature provided by CloudFlare, which works as expected for https://myapp.io.
My issue is about having SSL active for the subdomains. I wonder if this is possible without buying a wildcard SSL certificate.
CloudFlare DNS setup:
myapp.io. 300 IN CNAME myapp.herokuapp.com.
*.myapp.io. 300 IN CNAME myapp.herokuapp.com.
Heroku domains setup:
myapp.io
*.myapp.io
This works, but without SSL on subdomains. It is not possible to use CloudFlare features (such as SSL Full) for wildcard subdomains (except for Entreprise plan users).
I think I need to buy a wildcard SSL certificate for my domain ($115/year) and add the SSL Endpoint Heroku add-on ($7/month). Am I wrong?
Short answer:
You can't have a free wildcard SSL (Full protection) for subdomains on CloudFlare (Free plan).
Long answer:
I mean using wildcard with CloudFlare (Free plan), CloudFlare proxy protection and acceleration are bypassed (no orange cloud) so your origin server SSL certificate will be used instead. So to enable SSL you need to add a CNAME record for each subdomain (the cloud icon should be orange).
Example:
foo.myapp.io. 300 IN CNAME myapp.herokuapp.com.
bar.myapp.io. 300 IN CNAME myapp.herokuapp.com.
(You don't need to add any record for custom domains in Heroku if you already have *.myapp.io)
[EDIT]
Maybe you can add DNS records dynamically via CloudFlare's API (https://api.cloudflare.com/#dns-records-for-a-zone-create-dns-record)
(I didn't try that...)
Workaround:
As you said:
Pay for CloudFlare Enterprise
Buy a wildcard SSL certificate + Heroku SSL SNI (https://devcenter.heroku.com/articles/ssl-beta)
Hope it will help.
I have one domain purchased from GoDaddy.
lets say it is www.example.com, I have purchased wild card SSL certificate from GoDaddy for this domain.
This domain is pointing to one of my app on Heroku. When I type http://www.example.com, it is working fine. But when I type https://www.exapmle.com,
It says "web page not available" and error code is:
"ERR_CONNECTION_REFUSED".
So do I need to add SSL certificate on Heroku too? How https will work on my site when it's pointing to Heroku? Thank you in advance.
You need to upload your SSL certificate to Heroku with its CLI command heroku certs:add. Probably you also need to activate an SSL Endpoint addon ($20/month) and set your DNS CNAME pointing to it.
See https://devcenter.heroku.com/articles/ssl-endpoint#provision-the-add-on for details, and subsequent sections.