Reputation: 12187
Untrusted Certs on Heroku
I'm not very learned on ssl and certs in general as I have only recently started "really" working with them and understanding them. I have an issue.
I'm shipping a library for android which connects to a specific domain "derp.com". Each of my customers get a subdomain to access with the library. EG "customer.derpy.com"
So working with https on android can be a pain but its not the end of the world. I'm having issues where my cert isnt being trusted by all of the devices using the https of the server. I suspect this is why:
heroku certs --app my-app
Endpoint Common Name(s) Expires Trusted
------------------------ ---------------------------- -------------------- -------
cdepy412532.herokussl.com *.derp.com, derp.com 2013-04-05 22:36 UTC False
The certificate is being marked as untrusted. I suspect this is the cause of the issue as the devices are complaining that they cant verify the certificate. Why would this be?
The certificate is issued by a ca. I think its either rapidssl or geotrust.
Upvotes: 7
Views: 1149
Answers (1)
Reputation: 12187
I do hate answering my own question and would rather delete it but this may help someone else.
The issue in my case is that I had forgotten to combine the intermediate cert with the root cert.
This tutorial by Ryan McGeary was a great help.
My only advice is make sure you have the intermediary certs (pem or crt), root certs(pem or crt) and private key(key) from your boss or whoever received them. If you do not have all of these then you will get an untrusted cert on heroku.
Upvotes: 5
Related Questions
- How to get SSL working on Rails app with Heroku?
- heroku login unable to verify the first certificate
- Why is application running on Heroku not secured by Heroku SSL
- Rails SSL Local
- How to add new https certificate on Heroku
- Add ssl certificate on heroku
- Certificate verify failed Heroku Ruby on Rails 3.2.1 Ruby 1.9.2p290
- A workaround for SSL on Heroku
- Rails 3 SSL on Heroku
- Rails Checkout SSL heroku