Opened 8 years ago

Last modified 8 years ago

#16122 closed task

GRFCAN HTTPS — at Version 4

Reported by: stoecker Owned by: javiersanp
Priority: normal Milestone:
Component: External imagery source Version:
Keywords: https Cc: Don-vip

Description (last modified by Klumbumbus)

I reverted your last change. (21, 22, 23)

What do you mean with not working? https works and delivers tiles, as you can simply see when clicking on preview. If it is not working for you, please report what exactly, which OS, which JOSm version, ...

Change History (4)

comment:1 by stoecker, 8 years ago

Cc: Don-vip added

@Vincent: They have a Let's Encrypt certificate, but no certificate chain. Maybe we should replace IdenTrust in our internal list with LE direct cert. The browsers already support LE for some time now.

in reply to:  1 comment:2 by stoecker, 8 years ago

Replying to stoecker:

@Vincent: They have a Let's Encrypt certificate, but no certificate chain. Maybe we should replace IdenTrust in our internal list with LE direct cert. The browsers already support LE for some time now.

Hmm, no. wouldn't work. We would have to add intermediate "Let's Encrypt Authority X3", which I don't like much.

Someone should contact them, so they can fix this:

https://www.ssllabs.com/ssltest/analyze.html?d=idecan1.grafcan.es&s=195.53.241.136

They do it right for
https://www.ssllabs.com/ssltest/analyze.html?d=www.grafcan.es

@javiersanp:

Do you know contact at GRAFCAN. Can you ask them to fix the certificate chain?

P.S. In WebStart it should work.

comment:3 by Don-vip, 8 years ago

Description: modified (diff)
Keywords: https added

comment:4 by Klumbumbus, 8 years ago

Description: modified (diff)

(reference)

Note: See TracTickets for help on using tickets.