WebFaction
Community site: login faq

This worked for me:

  1. Create a new Website that uses an existing Application

    For example, I had website: foo that was linked to an application called foo_app; so I created a new website called foo_secure that also used foo_app

    foo_secure is the same as foo but with "Encrypted Site" selected

  2. Note that so far nothing changed for visitors to the original Website

    ... this only matters for an existing website

  3. Then run the the steps from this tutorial:

    https://cpbotha.net/2016/07/18/installing-free-lets-encrypt-ssl-certificates-on-webfaction-in-3-easy-steps/

    BUT, DON'T GO BEYOND STEP 3!! At least not yet ...

  4. Then created an SSL certificate within Webfaction, this is in the same menu bar as Domains, Websites & Applications

    (This is the tutorial's addendum called "Update on 2016-10-25").

    I called my certificate foo_certificate

    I then filled out the rest of the form by copying the contents of these three files into the the form:

    cert is in /home/mywebfactionusername/.acme.sh/foo_app/foo_app.cer key is in /home/mywebfactionusername/.acme.sh/foo_app/foo_app.key intermediate CA cert is in /home/mywebfactionusername/.acme.sh/foo_app/foo_app/ca.cer

    I clicked "Save"

  5. THEN, go back to the new Website you created called foo_secure ...

    ... under the Encrypted Site, there's a dropdown, called "Choose a certificate"

    Select foo_certificate & then "Save"

  6. Now verify that your domain's new SSL cert is working, by testing https://foo.com

    Once everything is verified, go back to the tutorial above:

    https://cpbotha.net/2016/07/18/installing-free-lets-encrypt-ssl-certificates-on-webfaction-in-3-easy-steps/

    and then ...

  7. Setup .htaccess, see the section called:

    "Boss level: htaccess-based redirect from HTTP to HTTPS"

  8. DON'T follow the steps for the cron job set up to auto renew your SSL cert

    acme.sh automatically adds a cron job to your crontab however it's set to run daily, so ...

    run crontab -e & change the frquency to 0 0 1 * * (instead of 0 1 * * * ... That's it; go slow and you're non-SSL site won't be disrupted while you add SSL.

Also saved these steps as a Gist:

https://gist.githubusercontent.com/petty/aea1d525246db31ac3e25ec617542e47/raw/9a478d6f615181b5feb4467785867c21ff9710a8/SSL%2520on%2520Webfaction

All that said, I'd welcome feedback!

This question is marked "community wiki".

asked 13 Mar, 14:48

Paul%20Griffin%20Petty's gravatar image

Paul Griffin...
114
accept rate: 0%

edited 13 Mar, 18:14


when you do the "acme.sh --renewAll" make sure you comment the redirect rules in the .htaccess

permanent link

answered 01 Aug, 00:23

Arjand's gravatar image

Arjand
213
accept rate: 0%

Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Question tags:

×85
×19

question asked: 13 Mar, 14:48

question was seen: 1,088 times

last updated: 01 Aug, 00:23

WEBFACTION
REACH US
SUPPORT
AFFILIATE PROGRAM
LEGAL
© COPYRIGHT 2003-2016 SWARMA LIMITED - WEBFACTION IS A SERVICE OF SWARMA LIMITED
REGISTERED IN ENGLAND AND WALES 5729350 - VAT REGISTRATION NUMBER 877397162
5TH FLOOR, THE OLD VINYL FACTORY, HAYES, UB3 1HA, UNITED KINGDOM