Julia: Serving website and docs over HTTPS
https://docs.julialang.org/en/stable/ returns NET::ERR_CERT_COMMON_NAME_INVALID on chrome
this is because ssl token is invalid/outdated
djsegal
All 20 comments
It's a hostname mismatch according to Safari:
sbromberger
on 18 Mar 2017
did this ever work over https, or is this just https://github.com/isaacs/github/issues/156 ?
tkelman
on 18 Mar 2017
This probably worked when we used to use readthedocs.org. Now the docs are hosted on github pages, making this the same issue as above.
ViralBShah
on 18 Mar 2017
closing as dup of isaacs/github#156
ViralBShah
on 18 Mar 2017
Non-ssl works. http://docs.julialang.org/en/stable/
ViralBShah
on 18 Mar 2017
I'm going to reopen this as a thing we need to fix, rather than waiting for GitHub to provide a solution. I believe @staticfloat is looking into options.
StefanKarpinski
on 19 Mar 2017
It only affects custom domain.
yuyichao
on 19 Mar 2017
Which is what we use.
StefanKarpinski
on 19 Mar 2017
An easy way to "fix" this is to use CloudFlare, which will allow replacing the GitHub certificate with its own.
TotalVerb
on 22 Mar 2017
We've now got things setup through Fastly, so https://julialang.org should now work, modulo DNS caching.
staticfloat
on 31 Mar 2017
Wasn't this always about https://docs.julialang.org not working?
djsegal
on 31 Mar 2017
Docs is also an objective, we'll get to work on that in the near future.
staticfloat
on 31 Mar 2017
Wasn't this always about https://docs.julialang.org not working?
I broadened the scope because they're fundamentally the same issue. Might as well start with the main webpage.
StefanKarpinski
on 3 Apr 2017
My bad. Didn't edit my answer. That makes a lot of sense. Thanks for working on it
djsegal
on 3 Apr 2017
I'm happy to report that this issue is now completely resolved, pending DNS propagation.
staticfloat
on 7 Apr 2017
Sorry to reopen this, but I found out pkg.julialang.org is not covered by this yet.
How I found out:
- Got the following error when trying to load a badge on my website:
QuantumOptics:1 Mixed Content: The page at 'https://juliaobserver.com/packages/QuantumOptics' was loaded over HTTPS, but requested an insecure image 'http://pkg.julialang.org/badges/QuantumOptics_0.4.svg'. This content should also be served over HTTPS.
- Decided to try to regex swap out
httpandhttps:
https://pkg.julialang.org/badges/QuantumOptics_0.4.svg
- Then got the following error (after navigating through Chrome:
Attackers might be trying to steal your information from pkg.julialang.org (for example, passwords, messages, or credit cards). NET::ERR_CERT_COMMON_NAME_INVALID
djsegal
on 21 Jun 2017
guess that needs to be addressed at https://github.com/JuliaCI/pkg.julialang.org (and maybe also on fastly?), but not sure how
tkelman
on 21 Jun 2017
This is a good point. Looks like it's being served through GitHub, so we can do the same fastly trick as with docs.julialang.org. I'll get on this today.
staticfloat
on 21 Jun 2017
Alright, it's setup, we just need to get DNS switched over and wait for it to propagate. In the meantime, you can test by setting 151.101.2.49 pkg.julialang.org in your /etc/hosts file.
staticfloat
on 21 Jun 2017
DNS has been switched over, we're just waiting for it to propagate now.
staticfloat
on 21 Jun 2017
Related issues
TotalVerb
路
3Comments
wilburtownsend
路
3Comments
felixrehren
路
3Comments
dpsanders
路
3Comments
i-apellaniz
路
3Comments
Most helpful comment
We've now got things setup through Fastly, so https://julialang.org should now work, modulo DNS caching.