It might help the validation process if there was an --expect-https or --cdn type parameter option.
So that when --nginx or --apache installer is used, certbot can be better prepared to handle the inline CDN HTTP>HTTPS redirection and properly serve the actual request heard.
Apache already sets up the challenges for both HTTP and HTTPS, so it should work out of the box with an HTTPS-only origin behind a CDN.
The same needs to be done for nginx and is tracked by this issue.
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.