mirror of
https://github.com/mail-in-a-box/mailinabox.git
synced 2024-11-22 02:17:26 +00:00
clarify that an SSL cert can remain self-signed on the non-primary domains if the domain isn't being used for web
This commit is contained in:
parent
dcce98f84b
commit
6a231d4409
@ -212,11 +212,17 @@ def check_ssl_cert(domain, env):
|
|||||||
])
|
])
|
||||||
fingerprint = re.sub(".*Fingerprint=", "", fingerprint).strip()
|
fingerprint = re.sub(".*Fingerprint=", "", fingerprint).strip()
|
||||||
|
|
||||||
print_error("""The SSL certificate for this domain is currently self-signed. That's OK if you are willing to confirm security
|
if domain == env['PRIMARY_HOSTNAME']:
|
||||||
exceptions when you check your mail (either via IMAP or webmail), but if you are serving a website on this domain then users
|
print_error("""The SSL certificate for this domain is currently self-signed. You will get a security
|
||||||
will not be able to access the site. When confirming security exceptions, check that the certificate fingerprint matches:""")
|
warning when you check or send email and when visiting this domain in a web browser (for webmail or
|
||||||
print()
|
static site hosting). You may choose to confirm the security exception, but check that the certificate
|
||||||
print(" " + fingerprint)
|
fingerprint matches the following:""")
|
||||||
|
print()
|
||||||
|
print(" " + fingerprint)
|
||||||
|
else:
|
||||||
|
print_error("""The SSL certificate for this domain is currently self-signed. Visitors to a website on
|
||||||
|
this domain will get a security warning. If you are not serving a website on this domain, then it is
|
||||||
|
safe to leave the self-signed certificate in place.""")
|
||||||
print()
|
print()
|
||||||
print_block("""You can purchase a signed certificate from many places. You will need to provide this Certificate Signing Request (CSR)
|
print_block("""You can purchase a signed certificate from many places. You will need to provide this Certificate Signing Request (CSR)
|
||||||
to whoever you purchase the SSL certificate from:""")
|
to whoever you purchase the SSL certificate from:""")
|
||||||
|
Loading…
Reference in New Issue
Block a user