Reputation: 1995
HEROKU Free tier SSL: You need to be running on either Hobby or Professional dynos to be able to use SNI SSL
I am hosting my website for free on heroku. So I have to enable SSL manually since their automated version is only available starting from the hobby dyno.
I've generated a certificate using:
sudo certbot certonly --manual
When I tried to add the certificate:
sudo heroku certs:add /etc/letsencrypt/live/www.sitename.com/fullchain.pem /etc/letsencrypt/live/www.sitename.com/privkey.pem
I got this error:
▸ You need to be running on either Hobby or Professional dynos to be able to use SNI SSL.
I thought doing this manually was possible but apparently even manually I need the hobby version.
Upvotes: 1
Views: 964
Answers (1)
Reputation: 1
Just bypass Heroku's cert system altogether. I was able to secure my free level staging site by incorporating the cert file into the Procfile:
web: gunicorn mysite.wsgi --timeout 90 --certfile /certs/fullchain.pem --keyfile /certs/privkey.pem --keep-alive 5 --log-level debug --log-file -
The methodology should be similar to nginx or apache. Just work it into your Procfile.
Upvotes: 0
Related Questions
- heroku: set SSL certificates on Free Plan?
- Any way to add a free SSL certificate on a free heroku dyno?
- Heroku: SSL is not enabled
- Heroku free SSL for paid dynos not working on "old" app
- can anyone help to understand heroku ssl
- Free SSL security certificate on Heroku?
- Heroku SSL: install intermediate cert?
- Heroku + Unable to verify SSL Certificate for api.heroku.com
- Heroku SSL using self signed certificate
- SSL certificate on Heroku