HTTPS Certificate Manual
SOAJS console supports the ability to add the https certificate manually as a secret. Here is how:
You need to do the following:
- Generate a certificates
- Download the generated certificate and create a full chain certificate files
private_key
fullchain_crt
1. Generate the SSL Certificates
- Go to https://www.sslforfree.com/ and login with your account.
- Click on Certificates from the top main menu
- Create or Renew the certificate you want based on the domain it is associated with ( both options redirect to the same location )
- Enter the multiple domains you want the certificate to be associated with ( domain are separated by space )
- Select Manual Verification (DNS) option
- Click on manually verify domain
- The wizard will ask you to enter TXT records in your DNS
- The wizard will also provide you with links to verify that these entries have been done
- Once the verification is complete, click on Download SSL Certificate
2. Download the generated certificate and create a full chain certificate files
the downloaded certificates are made up or 3 files:
- ca_bundle.crt
- certificate.crt
- private.key
This formate is not compatible with Nginx and is also missing what is known as the full chain certificate file, do the following:
- rename private.key to private_key
- create a new file called fullchain_crt and open this file in your text editor
- copy the content of certificate.crt to fullchain_crt
- directly below it, copy the content of ca_bundle.crt to fullchain_crt
- save fullchain_crt
Certificates can be modified by text editors, the full chain certificate is a combination of both the certificate and the ca_bundle.