handel tls when domain point to subdomain in cname record

ashraf revo

7/27/23, 11:45 AM

we are trying to point domain to sub doamins *.com --> *.zeineldin.link for example https://www.asrevo.com --> https://petman.zeineldin.link

we need to support all domain not few domains

for example like github when you point cname to your repo in github

we are facing ssl problems that the certificate is not valid

actually we are trying to make it dynamic not only for those domains we are using aws alb, spring-cloud-gateway as proxy for domain routing

0 + 0

ssl

java

ssl-certificate

springboot

Score:0

Server

vidarlo

7/27/23, 11:59 AM

You need a certificate for www.asrevo.com.

The certificate should match what's in the URL field of your browser.

Cnames operate at the DNS layer. They are not HTTP redirects.

0 + 0

ashraf revo

7/27/23, 12:11 PM

yes how to do this , i need to handle all domain not only www.asrevo.com, like github when you add cname to your repo @vidarlo

vidarlo

7/27/23, 12:18 PM

You can get a wild card certificate for e.g *.asrevo.com. If it's not subdomains of a name you control, you'll have to get certificates that covers the name. One cert can cover many names. ACME protocol ensures that you can get a valid certificate for a new name in seconds.

ashraf revo

7/27/23, 12:26 PM

i know you can have many domain in one certificate , but think a bit do you think github renew its certificate every point to a repo adding domain to there certificate, and they have millions of domain in there one certificate

vidarlo

7/27/23, 12:35 PM

They pretty much have to. The only other way would be to become a CA, and just issue a valid certificate on request - but that would probably breach the CAB guidelines... And they don't have millions in one cert, but spread out over various certs. For subdomains of domains they control, they probably use wildcard certs.

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: handel tls when domain point to subdomain in cname record

TH: handel tls เมื่อโดเมนชี้ไปที่โดเมนย่อยในระเบียน cname

RO: handel tls când domeniul indică subdomeniul în înregistrarea cname

RU: handle tls, когда домен указывает на субдомен в записи cname

VI: handel tls khi tên miền trỏ đến tên miền phụ trong bản ghi cname

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.