Closed acka47 closed 8 years ago
We will go forward like this:
:+1:
Here is a site to analyze the configuration of an SSL-Server: https://www.ssllabs.com/ssltest/analyze.html As soon as we have a first implementation we can use this for testing.
Deployed to http://test.lobid.org and https://beta.lobid.org/.
It works – but doesn't get the best grades, see https://www.ssllabs.com/ssltest/analyze.html?d=http%3A%2F%2Ftest.lobid.org%2F
Chromium says:
I would rather have it looking like oerworldmap:
This is ok for now and can be deployed as it suffices for the initial request by T. Scheffler. We will discuss on Thursday when we will work on improving it.
We could make https
as default, not allowing http
at all. This would it make easier to handle the vhost apache configs. But I would argue against that, especially because of the big downloads we provide, because caching is with https
no more possible.
For the discussion a little bit of context.
Deployed to production. @acka47 please ping MIR repo
.
please ping
MIR repo
.
Did so. Closing.
As reported by @jschnasse, the api-URL (api.lobid.org) is not ssl enabled. @fsteeg : do we need the api
subdomain at all? If we could get rid of it , we should do so, and then update the documentation at https://lobid.org/api.
I don't think we need the api
subdomain, and it already redirects to lobid.org
, see: http://api.lobid.org
So I think all we need to do is to update the documentation. Deployed to staging: http://test.lobid.org/api
Great :)
Requested on 2015-06-26 by T. Scheffler who is working on the MIR repository software. They use lobid GND API for lookup of GND persons.
If we need some advice we can ask @jschnasse who has some experience with HTTPs for hbz services.