WWW Site Domain Showing Black Screen

Vinayak · January 17, 2020, 10:22pm

Checked in different browsers all showed blank page (though Title is there) when visiting https://www.hostballs.com, all works fine at https://hostballs.com.

Is this by design or a bug or is it just me?

Wolveix · January 17, 2020, 10:37pm

@Jarland this is probably a side effect of the work that you’ve been doing.

Jarland · January 17, 2020, 10:40pm

Hmm, well that’s odd. It’s just a CNAME to the A record, proxied of course. I’m a little confused why it’s acting differently than it ever did before CF.

Jarland · January 17, 2020, 10:42pm

Let’s try killing the CF proxy for a bit and see if it’s the CF headers forcing the content security policy thing.

Jarland · January 17, 2020, 11:23pm

Had to sign a cert for it, was using flexible SSL

Jarland · January 17, 2020, 11:23pm

Now www isn’t covered by the SSL cert? That’s odd behavior for Discourse.

Jarland · January 18, 2020, 12:00am

Maybe www hadn’t propagated yet, I’ll rebuild the app again later.

Wolveix · January 18, 2020, 12:13am

It’s working for me now

root · January 18, 2020, 1:42am

Let’s look on the bright side, it’s just a black screen, not blue screen of death.

Jarland · January 18, 2020, 2:18am

The cert for www is?

Wolveix · January 18, 2020, 2:31am

The redirection.

Vinayak · January 18, 2020, 5:18am

Websites prove their identity via certificates. Firefox does not trust this site because it uses a certificate that is not valid for www.hostballs.com. The certificate is only valid for hostballs.com.

Error code: SSL_ERROR_BAD_CERT_DOMAIN

Jarland · January 18, 2020, 5:45am

Yeah it’s still not signing the cert for www. This is something Discourse does on it’s own without any extra configuration, and it’s such a mess to deconstruct their methods this should take a while.

Probably for @Wolveix the redirect is cached, chrome does that.

Jarland · January 18, 2020, 6:09am

Yeah I give up for the night, I think.

Jarland · January 18, 2020, 6:15pm

Seems this is the way Discourse handles itself now. I set up a test at mxroute.host and notice that www.mxroute.host is not part of the certificate either. So we’re just not a www site. Not interested in manually editing the configs but may do a redirect elsewhere later. I don’t want to have to manually adjust configs on every update of Discourse given how frequent they are.

Jarland · January 18, 2020, 6:27pm

Or I can just turn on CF proxy again and let it handle that, cheaper. But… then it does the content policy thing again.

Jarland · January 19, 2020, 7:56am

Does www look good now to others?

Skander · January 19, 2020, 4:09pm

Works for me now - yesterday it was an invalid cert.

Vinayak · January 19, 2020, 6:01pm

Perfectly redirecting to non WWW.