Fable: Use https for fable.io

That's a great idea. I guess we need a certificate for that, do you know hot to get it? (never have tried it myself).

I have no idea... the links i provided seems to speak only about IP address don't know why.

Perhpas @whitetigle know something about it. I know he used Let’s Encrypt recently.

Hi!
Basically there are two ways to get the certificate:

1. you buy it from your registrar
2. you generate it using let's Encrypt

But, regarding GitHub, I don't know if anything is needed:

If you are using CNAME or ALIAS records for your custom domain, you’re all set and your site should be accessible over HTTPS

( source: https://blog.github.com/2018-05-01-github-pages-custom-domains-https/)

So the best thing would be... to check ;)

We do use CNAME but apparently it's not enough :/ I'd have to dig into this deeper:

Ok on GitLab, I needed to add a certificate which I managed to create using Let's Encrypt and then it would serve the pages using https.

I'll check how it works for github. 👍

What I'm doing with https://fake.build is using cloudflare free service, this works quite well.

But let me see with github It won't take long ;) (says he...)

Ok I tried this

Now let's wait for DNS update...

Ok it works on my side:

Regarding (CNAME) was that some special feature with github pages?

Now it seems you'll have to create a CNAME record for your domain.

If somebody needs more information about the cloudfare solution just ping me. The good this is that you don’t need to setup any certificates yourself. the bad thing is that communication between cloudfare and github is not encrypted afaik

Looking at the DNS records it seems fable.io is not set up using CNAME but A records instead, e.g. using DNS lookup on MXToolbox.com I find these:

Type | Domain Name | IP Address | TTL
-- | -- | -- | --
A | fable.io | 192.30.252.153 | 24 hrs
A | fable.io | 192.30.252.154 | 24 hrs

As far as I can tell the A records need to be updated with new IP addresses in order to support enabling HTTPS. The exact steps to be followed are documented here. In particular step 4 seems important.

Thanks @bzuu! We're having some trouble at the moment because we're not the owners of the domain, we're just "borrowing" it. But I contacted the owner to see if it's possible to make this change. Let's see.

Thanks @alfonsogarciacaro for the update! Just want to let you know I tried the steps I linked to on my own domain and it seems to work just as expected. So updating the IP addresses on the DNS server should probably be enough.

We're a bit in trouble now because the original owner says he didn't renovate but the domain is taken so I don't know if someone else has taken it :/ Although I guess in that case it shouldn't be working now for the Fable site 🤔

Ouch, that wouldn't be good. It seems the domain was renewed on 2018-02-08 and is registered until 2019-02-09 so perhaps the current owner is still in control until then?

Zut!

Domain Name: FABLE.IO 
Registry Domain ID: D503300000040542996-LRMS 
Registrar WHOIS Server: whois.101domain.com 
Registrar URL: https://www.101domain.com 
Updated Date: 2018-02-08T11:29:45Z 
Creation Date: 2012-02-09T11:26:31Z 
Registry Expiry Date: 2019-02-09T11:26:31Z 
Registrar Registration Expiration Date: 
Registrar: 101domain GRS Ltd 
Registrar IANA ID: 1011 
Registrar Abuse Contact Email: [email protected] 
Registrar Abuse Contact Phone: +1.8582954626 
Reseller: 
Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited 
Registrant Organization: Digital Privacy Corporation 
Registrant State/Province: CA 
Registrant Country: US

Closing in favor of https://github.com/fable-compiler/fable-compiler.github.io/issues/27