💾 Archived View for bbs.geminispace.org › u › michaelnordmeyer › 4149 captured on 2023-11-14 at 09:56:08. Gemini links have been rewritten to link to archived content
⬅️ Previous capture (2023-11-04)
-=-=-=-=-=-=-
Re: "Separate certificates for virtual hosts"
A single certificate also exposes all subdomains.
And maybe different validity dates for each subdomain is a feature for some use cases.
Aug 12 · 3 months ago
Each virtual host should be able to use its own certificate. Currently, only one certificate is used and it must have alternative names for each vhost. I'm not sure if this requires more than loading multiple server certificates at launch, i.e., whether pyOpenSSL checks the SNI info automatically or does the handshake need to be handled more manually. Some research needed...