mirror of
https://github.com/0xJacky/nginx-ui.git
synced 2026-04-25 08:45:58 +03:00
[GH-ISSUE #309] 同一个域名无法共存RSA+ECC双证书 #7292
Labels
No labels
Q/A
bug
casdoor
dependencies
docker
documentation
duplicate
enhancement
help wanted
invalid
lego
platform:openwrt
platform:windows
pull-request
question
wontfix
No milestone
No project
No assignees
1 participant
Notifications
Due date
No due date set.
Dependencies
No dependencies set.
Reference
starred/nginx-ui#7292
Loading…
Add table
Add a link
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Originally created by @jearton on GitHub (Feb 20, 2024).
Original GitHub issue: https://github.com/0xJacky/nginx-ui/issues/309
Describe the bug
我用一个域名先申请了RSA证书,再去申请ECC证书后,列表里会显示最新的ECC证书,原来的RSA证书没了。
To Reproduce
Steps to reproduce the behavior:
Expected behavior
RSA证书和ECC证书应该同时存在才对
Screenshots
Info (please complete the following information):
Additional context
我猜是因为名称重复导致的,因为你这个列表页上都看不出是什么密钥类型。我建议名称上加上一个密钥类型后缀,比如 *.xxx.com_ec256 *.xxx.com_rsa2048,避免重复。如果连密钥类型都重复了,那么在生成的时候,就应该提前校验阻断,避免多余的无意义操作。
我为什么需要双证书,因为HTTPS网站只有使用了双证书,在MySSL里才能评级到A+级别。
修改建议:在名称上加后缀作区分,并且列表页透出密钥类型这一列。这样也可以兼容存量数据,不会影响兼容性。