• 5
name Punditsdkoslkdosdkoskdo

Heroku is not switching certificates after adding custom

I have an app on Heroku and I bought my own certificate, valid for myapp.mydomain.de. I added it to Heroku using their addon, SSL Endpoint.

I have a CNAME record which redirect from myapp.mydomain.de to myapp.herokuapp.com.

However, when I visit my myapp.mydomain.de the certificate is still the one issued by Heroku and not my own.

When i do a heroku certs:info I only see my own certificate.

$ curl -kvI https://myapp.mydomain.de
* Rebuilt URL to: https://myapp.mydomain.de/
* Hostname was NOT found in DNS cache
*   Trying
* Connected to myapp.mydomain.de ( port 443 (#0)
* TLS 1.2 connection using TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
* Server certificate: *.herokuapp.com
* Server certificate: DigiCert SHA2 High Assurance Server CA
* Server certificate: DigiCert High Assurance EV Root CA
> HEAD / HTTP/1.1
> User-Agent: curl/7.37.1
> Host: myapp.mydomain.de
> Accept: */*

$ heroku certs -a myapp
Endpoint                  Common Name(s)                                                                                          Expires               Trusted
------------------------  ------------------------------------------------------------------------------------------------------  --------------------  -------
osaka-2491.herokussl.com  m.mydomain.de,myapp.mydomain.de  2017-02-09 23:59 UTC  True

$ heroku certs:info --> looks good also

Any idea why ?

P.S. myapp.de is not the real domain, just an example

Don't know if you done that but you have to upload to the endpoint the cert with the priv key with commands like :

heroku certs:add server.crt server.key

And check if its ok with : heroku certs

If its not okay you have someting wrong in the cert , edit with a vim or notepad to checks inside cert .

  • 1
Reply Report

Warm tip !!!

This article is reproduced from Stack Exchange / Stack Overflow, please click

Trending Tags