Codeanywhere Automatic SSL not working?

komiomi · July 21, 2019, 7:42pm

Hi all - I’m using Let’s Encrypt through CodeAnywhere, and contacted them multiple times to no reply.

My domain is: www.komikomi.style and I’m using their custom domain setup. I have it set to my container and internal port, and the external port set to 443. However, it just never finds the domain on 443. It works perfectly fine on 80, but when I try to use the Let’s Encrypt port for my free SSL certificate, it fails everytime.

I’m running a container that isn’t always on, just a starter, but it’s an MEN setup on Ubuntu. I can login to root if I need to do anything on my own server.

My CNAME Record is on a host of www, and the value is sfo.codeanyproxy.com as the documentation says. The URL Redirect Record is @ and http://www.komikomi.style/ unmasked.

If there’s any question to the instructions I used:

github.com

codeanywhere/documentation/blob/master/connections/settingdomain.md

---
current_menu: settingdomain
---

# Setting Custom Domain

Once you've created a container, you will probably want to preview it in your own link! Now, you can set your custom domain using our [Dashboard](https://codeanywhere.com/dashboard#)!

![customdomain1](images/customdomain1.png "customdomain1")

## CNAME Records
Before you start configuring your domain in Codeanywhere, there is one step you should do first and that is to go to your domain register (GoDaddy and similar) and create a CNAME record. 

The CNAME record you create must point to our proxy server: sfo.codeanyproxy.com

For more information on CNAMEs and how they work, please visit the Google Support Guide for CNAME records.

In your dashboard, select "Add New Domain Name".

## Add your Custom Domain:

This file has been truncated. show original

Would appreciate any help here!

JuergenAuer · July 21, 2019, 7:57pm

Hi @komiomi

checking your domain there is a new certificate ( https://check-your-website.server-daten.de/?q=komikomi.style ):

CN=www.komikomi.style
	18.07.2019
	16.10.2019
expires in 87 days	www.komikomi.style - 1 entry

And you use it - your www - version is secure.

Domainname	Http-Status	redirect	Sec.	G
• http://komikomi.style/
162.255.119.82	302	http://www.komikomi.style/	0.357	D

• http://www.komikomi.style/
162.243.142.234	200		0.493	H

• https://komikomi.style/
162.255.119.82	-14		10.030	T
Timeout - The operation has timed out

• https://www.komikomi.style/
162.243.142.234	200		1.960	B

Only problem: The certificate doesn't have the non-www domain name, so your non www isn't secure.

But I don't know what that client is doing. So I don't know if it is possible (using this client) to create a certificate with both domain names.

Perhaps use another Letsencrypt client.

komiomi · July 22, 2019, 5:29pm

Thanks @JuergenAuer - I made some progress.

At this point https://www.komikomi.style/ is functioning correctly.

But, all of these fail (probably due to incorrect DNS configuration)
http://www.komikomi.style/
http://komikomi.style/
https://komikomi.style/

I don’t have root access on CodeAnywhere, is there a way to get them all to point to https://www.komikomi.style/ ?

JuergenAuer · July 22, 2019, 6:08pm

I have no idea how that codeanywhere works. And why you need a CNAME with your www domain:

Host	T	IP-Address	is auth.	∑ Queries	∑ Timeout
komikomi.style	A	162.255.119.82 Phoenix/Arizona/United States (US) - Namecheap No Hostname found	yes	1	0
	AAAA		yes
www.komikomi.style	C	sfo.codeanyproxy.com	yes	1	0
	A	162.243.142.234 San Francisco/California/United States (US) - DigitalOcean, LLC Hostname: sfo5.codeanyproxy.com	yes

The normal and typical setup:

Non-www and www have the same ip address, same webspace, same vHost. Then it's easy to create a certificate with both domain names and use that with this vHost.

So if you use that client -> you may have some limitations.

Rip · July 22, 2019, 6:55pm

Hi @komiomi

http://www.komikomi.style/ rewrites to https://www.komikomi.style/ - This is good.
http://komikomi.style/ rewrites to https://komikomi.style/ - This is also good.

Before you attempt to configure redirects to “www”, http://www.komikomi.style/ needs to show a CNAME as @JuergenAuer points out .

After you accomplish this, you could take the next step and configure a redirect to your preferred host (www).

Hope this helps.
Rip

komiomi · July 22, 2019, 8:03pm

I applied a similar concept here and got all domains working: https://stackoverflow.com/questions/46923055/how-do-you-force-https-with-namecheap-and-heroku

With the http’s being unsecure and the https’s being secure.

However, I’m surprised to hear (maybe at one point in testing?) those were both going to https. Is there any possibility of browser cache or Https Everywhere doing that automatically? I’ve been trying to figure out how to make it auto-redirect to https, but I think there is a structural limitation here.

system · August 21, 2019, 8:03pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.