zlacker

[parent] [thread] 3 comments
1. jiggaw+(OP)[view] [source] 2023-07-25 07:13:07
> Can't you sign your own certificates?

Self-signed certificates are banned in HTTP/2 onwards, which is really irritating when it is used for internal server-to-server communications.

You have to set up a Root CA certificate and use that to sign a second certificate. It's the same thing but with extra steps.

replies(3): >>charci+P3 >>creato+q5 >>sgammo+m6
2. charci+P3[view] [source] 2023-07-25 07:46:08
>>jiggaw+(OP)
I've never had an issue using HTTP/2 with a self signed cert.
3. creato+q5[view] [source] 2023-07-25 07:59:48
>>jiggaw+(OP)
Huh? Self-signed certificates work with HTTP/2 in every browser I've tried it in, it just uses the usual trust-on-first-use system where you have to click past a warning.
4. sgammo+m6[view] [source] 2023-07-25 08:09:08
>>jiggaw+(OP)
That's still self-signing. So the extra steps are immaterial to the point.
[go to top]