ACM wildcard certificates

heroku / roadmap

This is the public roadmap for Salesforce Heroku services.

190 stars 11 forks source link

ACM wildcard certificates #39

Open agrobbin opened 1 year ago

agrobbin commented 1 year ago

Required Terms

[X] I agree to follow this project's Code of Conduct
[X] I have read and accept the Salesforce Program Agreement

What service(s) is this request for?

Automated Certificate Management

Tell us about what you're trying to solve. What challenges are you facing?

Let's Encrypt added support for wildcard certificates back in 2018 (according to this post).

It'd be great if Heroku's ACM also offered support for wildcard certificates!

danaspiegel commented 1 year ago

👍

afawcett commented 1 year ago

Thanks for this @danaspiegel - this seems like a pretty reasonable ask to me - will discuss with the team.

andreas-venturini commented 1 year ago

@afawcett has this issue since been removed from the Roadmap?

We have two apps for which we'd like to enable ACM but currently cannot due to the limitation that apps using ACM are not allowed to have wildcard certs. Mostly happy with our Heroku enterprise plan but the lack of ACM support for apps w/ wildcard certs is really annoying and adding unnecessary devops overhead for our team. Would be glad to provide more info or our use case for this.

earnold commented 1 year ago

Is there any progress on this issue? Any sort of timeline? You have a support article mentioning you'd like to work on it.

timharding commented 10 months ago

@afawcett Hi Andrew, would like to +1 this. We've got 2 applications/4 environments that have wildcard domains and ACM would save us hundreds of pounds, a number of hours, and a reasonable amount of concern each year in dealing with certificates. Thanks.

andreas-venturini commented 7 months ago

Would be nice if Heroku provided an update re the status after ~1 year of research phase. It's hard to understand why this feature is still missing in 2024 given that this is a de facto standard on virtually all Heroku competitor platforms.

egeek commented 5 months ago

Any update here? It's really disappointing that neither this, nor HTTP/2 (#34) support is provided.

timharding commented 3 months ago

Another bump for this. Great to see it is being worked on. We're due for renewals in June 2025 and this would save us hundreds of pounds in certificate purchases. Otherwise we're wondering about putting AWS load balancers in front of Heroku so we can have them manage our wildcard certificates.

Please get this sorted. It's the one issue we have with Heroku that makes us consider alternatives.

elimchaysengSF commented 1 month ago

Hey all - wanted to give a small update. We've been juggling this initiative between our Router 2.0 and HTTP/2 projects and the path to GA for that router and feature. That said, we've made really great progress for Wildcard ACM through June. We're closing in on a target launch date. Not quite finalized yet, but excited to get this in customer's hands as soon as we can!

timharding commented 1 month ago

@elimchaysengSF happy set this up on our two staging environments if it is helpful to have beta testing.