Skip to content

Instantly share code, notes, and snippets.

@coolaj86

coolaj86/github-pages-https-lets-encrypt.md

Last active November 16, 2021 22:36
Show Gist options
  • Star 136 You must be signed in to star a gist
  • Fork 1 You must be signed in to fork a gist
  • Save coolaj86/e07d42f5961c68fc1fc8 to your computer and use it in GitHub Desktop.
Save coolaj86/e07d42f5961c68fc1fc8 to your computer and use it in GitHub Desktop.
Download ZIP
Github Pages: Let's Encrypt!
Raw
github-pages-https-lets-encrypt.md

Please petition Github to support HTTPS on github pages: https://github.com/contact

Here's what I wrote:

Obviously, a lot of people want HTTPS for github pages:

Until recently, that would be difficult to implement but, as it turns out, the implementation is pretty much complete:

I'm a freelancer, so I've got time and I'd love to help out in any way I can (I'd even come work for you at a substandard rate) if we could get this implemented by Let's Encrypt launch day.

You can also send a message to support@github.com

@dblock
Copy link

dblock commented Mar 12, 2018

I changed the CNAME for my apex domain, https://dblock.org to sni.github.map.fastly.net, but that doesn't seem to be serving a dblock.org cert for https for dblock.org. I wonder whether there will be a solution for that? Also whether HSTS is going to be enforceable.

@wizardishungry
Copy link

@dblock:

  • jonwillia.ms works for me if I put it in /etc/hosts (I’m waiting for DNS to propagate) and hit reload in Safari
  • I see the correct (“sni" endpoint) ip for dblock.org
  • dblock.org does NOT work for me if I put it in /etc/hosts; github serves the plain github cert.
  • dblock.org also has an ipv6 address; I have it turned off in my network stack (just a data point)
  • Perhaps github checks the DNS configuration on push to determine which cert to present during SNI and caches it. Since I'm doing this today & dblock's repo was pushed 5 days ago, perhaps you encountered older logic. Try pushing?

@gpkc
Copy link

gpkc commented Mar 25, 2018

+1

@adueppen
Copy link

+1

@cdobraunig
Copy link

+1

@imryan
Copy link

imryan commented Mar 28, 2018

+1

@luiscastro193
Copy link

+1

@morfien101
Copy link

+1

@stefan2904
Copy link

I also noticed today, that this is already working for one of my (new) domains: https://twitter.com/stefan2904/status/983469050696257537

2018-04-10-00 53 25_selection

@avanc
Copy link

avanc commented Apr 18, 2018

+1 for Let's Encrypt support

@sambaldwin
Copy link

+1

@rnegron
Copy link

rnegron commented Apr 21, 2018

+1 must-have

@jwildeboer
Copy link

FTR - I added jan.wildeboer.net as my custom domain name last friday (2018-04-20) and after about an hour I noticed that a letsencrypt certificate had been automagically added and configured. I could switch my .github.io repo to "enforce HTTPS". So it seems they are doing a soft roll-out (for all? A/B testing?) and I expect an official announcement in the next few weeks.

@20TRIES
Copy link

20TRIES commented Apr 24, 2018

+1

@TomFanella4
Copy link

+1

@0xdea
Copy link

0xdea commented May 1, 2018

HTTPS is now officially supported on custom domains!
https://blog.github.com/2018-05-01-github-pages-custom-domains-https/

@liudonghua123
Copy link

+1024

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment