💾 Archived View for bbs.geminispace.org › s › GmCapsule-Issues › 8 captured on 2023-11-14 at 08:51:22. Gemini links have been rewritten to link to archived content
⬅️ Previous capture (2023-11-04)
-=-=-=-=-=-=-
Each virtual host should be able to use its own certificate. Currently, only one certificate is used and it must have alternative names for each vhost.
I'm not sure if this requires more than loading multiple server certificates at launch, i.e., whether pyOpenSSL checks the SNI info automatically or does the handshake need to be handled more manually. Some research needed...
🐞 Issue #8 in s/GmCapsule-Issues
Jul 19 · 4 months ago
🍵 michaelnordmeyer · Aug 12 at 18:01:
A single certificate also exposes all subdomains.
And maybe different validity dates for each subdomain is a feature for some use cases.