💾 Archived View for bbs.geminispace.org › u › michaelnordmeyer › 4149 captured on 2024-03-21 at 19:30:39. Gemini links have been rewritten to link to archived content

View Raw

More Information

⬅️ Previous capture (2024-02-05)

➡️ Next capture (2024-05-10)

🚧 View Differences

-=-=-=-=-=-=-

Comment by 🍵 michaelnordmeyer

Re: "Separate certificates for virtual hosts"

In: s/GmCapsule-Issues

A single certificate also exposes all subdomains.

And maybe different validity dates for each subdomain is a feature for some use cases.

🍵 michaelnordmeyer

2023-08-12 · 7 months ago

Original Post

🌒 s/GmCapsule-Issues

Each virtual host should be able to use its own certificate. Currently, only one certificate is used and it must have alternative names for each vhost. I'm not sure if this requires more than loading multiple server certificates at launch, i.e., whether pyOpenSSL checks the SNI info automatically or does the handshake need to be handled more manually. Some research needed...

💬 skyjake [mod...] · 1 comment · 2023-07-19 · 8 months ago · #feature