On 06/26/2014 10:39 AM, Martin Kosek wrote: > On 06/26/2014 07:28 AM, James wrote: >> I think it's kind of funny that the cert for: https://www.freeipa.org/ >> is invalid, particularly since this is a security product. >> >> In any case, feel free to forward to whoever maintains this in case >> someone thinks it matters. >> >> Cheers, >> James > > You are of course right. Given that OpenShift (where the wiki is running) now > supports certificates for aliases, it is possible to configure the > certificate. > > I have started the machinery, stay tuned. > > Thanks, > Martin
To update this thread, note that https://www.freeipa.org is now secured with a valid certificate. https://freeipa.org is NOT secured with a valid certificate as this is routed via external server which redirects all requests to "www.freeipa.org". This is required as OpenShift application node A/AAAA records can change and we need to always point to the CNAME (wiki-freeipaorg.rhcloud.com). Given that DNS zone record (freeipa.org) cannot contain CNAME record, we are stuck with this external redirector. Long story short, this one will take more time to solve. Martin _______________________________________________ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel