This is a follow on from the issue at http://drupal.org/node/1994000. I'd got SSL working by copying the certificates to various places that Aegir was looking for them, changing ownership of the SSL certificate to root and disabling writing to prevent platform and site verify from deleting them, but today started hitting certificate non-compliance issues. The problems started when I tried to turn off SSL while I figured out the issues with certificates:

  • Attempting to turn off SSL by editing the site in Aegir and setting SSL to disabled doesn't work. Redirect to https still takes place.
  • Attempting to turn off SSL by disabling SSL features in Hosting / Features menu does not work.
  • Attempting to turn off SSL by deleting certificates does not work.

After carrying out all of these, I can now view the http domain without being redirected, but https links are still showing as invalid certificate, rather than redirecting to non-https or coming up blank.

Comments

DanielJohnston’s picture

OK, confirmed the unstoppable redirect from http to https is a Chrome issue at this stage. Currently trying to completely shut down SSL support on nginx as a temporary fix to https errors.

omega8cc’s picture

Category: bug » support
Status: Active » Closed (works as designed)

1. You can't use Aegir built-in SSL feature when you have only single IP address available.
2. You shoulnd't use Aegir built-in SSL feature with BOA. Instead, follow the docs/SSL.txt or this recipe if you have only a single IP.
3. Browsers remember redirects.