Score:-1

Server

How to automate SSL certificate to page builder site?

ßãlãjî

1/5/23, 5:34 AM

I created Page Builder Application for my clients but I am facing difficulties in SSL creation because of users counts is too large (more than 1000). I know its not right procedure SSL certificate creating manually and restarting for each user which is bad idea. I want to apply SSL certificate automatically who all are pointing my DNS A record.

I am using GCP Cloud with nginx server.

Thank you.

203

2 + 3

ssl

ssl-certificate

vidarlo

1/5/23, 7:53 AM

Set up a system that requests certificates from e.g. Let's Encrypt. More detailed answer is not really possible as we don't know your configuration.

ßãlãjî

1/5/23, 1:19 PM

@vidarlo, i exactly don't know how to achieve my case ,because of lots of domain.i need just way of achieve with what kind of technoledgy need for that

vidarlo

1/5/23, 1:45 PM

The amount of domains is *why* you should automate it. For how to do this: that's too wide topic for a Q&A forum like this.

Score:2

Server

tsc_chazz

1/10/23, 10:48 PM

You've received recommendations for LetsEncrypt and Certbot, but it doesn't look like you've followed up either of them. Certbot is a script that will automatically create LetsEncrypt certificates and install them directly into the nginx server instances, basically doing all the heavy lifting of the automation you need to do. LetsEncrypt is, of course, a certificate authority, so you're not dealing with self-signed certificates. I strongly recommend looking into Certbot for your application.

0 + 0

RVT

2/8/23, 7:33 AM

Exactly. CertBot will *certainly* do all the "heavy lifting" with the LetsEncrypt CA... so much so, that you should essentially ***never*** have to look at it, again, or "fix it."

Score:1

Server

RVT

1/5/23, 11:41 AM

See: certbot

You can even load it as a Python module under pyenv and/or virtualenv for kicks.

0 + 1

ßãlãjî

1/5/23, 1:21 PM

,do you have any related docs for my case with certbot?

RVT

2/8/23, 7:32 AM

Not specifically "for your case," but `certbot` is pretty simple, overall... it's literally a Python module, which you can find on pypy and install with `pip`, under many different versions on Python. It gets "as difficult as" specifying a configuration, with a specific domain name, and having the "right" pieces to allow the certbot servers actually verify challenge/reponse data, on the fly.

ßãlãjî

2/8/23, 9:39 AM

i can't see any certbot with python related docs.kindly share any article if you know.

RVT

3/9/23, 8:51 AM

`certbot` is a Python module... create your Python environment (preferably under a virtual environment of some sort) and then `pip install certbot` - once that is done, you can start with `certbot --help` (which is common to Python modules, overall)

Score:-1

Server

alrashid villanueva

1/6/23, 9:42 PM

I also had a similar issue before, I was using GCP managed SSL certs.

There is an open request, to add more domains to the SSL cert without recreating the Cert itself so you could add more domains to a single cert.

If you think this could benefit you, please +1 the request tracker.

0 + 1

ßãlãjî

1/7/23, 5:09 AM

i think you mean SAN certificate but it comes with limitation,i want to install each user each certificate is better idea ,i debugged many pagebuilder sites like wix s and some other page builder they install each user each certificate.

RVT

3/9/23, 8:54 AM

No, this is kinda bogus. Adding domains requires you to rewrite the SAN (Subject Alternative Name) within the Cert itself. Changing the contents of the cert in ***ANY*** form causes you to invalidate the cert, period... so it MUST be invalidated and reissued. That's just how the crypto works.

RVT

3/9/23, 9:03 AM

To make this CLEAR to you, @alrashid-villanueva ... you "solution" basically says you want to add domains to a SSL certificate without telling *the actual server* that you've added domains to it. All of that info is ***encrypted*** inside the certificate. So, there's literally NO way to do this in any secure fashion, right now.

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: How to automate SSL certificate to page builder site?

TH: วิธีทำให้ใบรับรอง SSL เป็นอัตโนมัติไปยังไซต์ตัวสร้างเพจ

RO: Cum să automatizez certificatul SSL pe site-ul de constructor de pagini?

RU: Как автоматизировать SSL-сертификат для сайта конструктора страниц?

VI: Làm cách nào để tự động hóa chứng chỉ SSL cho trang web xây dựng trang?

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.