afawcett
commented
2 years ago Per comment above - relates to https://github.com/heroku/roadmap/issues/39
Open colszowka opened 2 years ago
afawcett
commented
2 years ago Per comment above - relates to https://github.com/heroku/roadmap/issues/39
friism
commented
1 year ago @colszowka can you provide more details on why you need this? We want to help, but before adding more complexity to the certificate management system we'd like to understand what's keeping your from relying 100% on ACM certs. Is it because you need a wildcard cert?
colszowka
commented
1 year ago Hi @friism, as described on the original description, when using cloudflare origin certificates I have to set a custom certificate on my Heroku app. If that same app also is reachable directly via another domain, I cannot use ACM and therefore have to manually manage those certificates, which is fairly annoying. This is somewhat related to the wildcard feature, but not really, whether it's a wildcard cert doesn't matter as it's just about the combination of a custom cert with wanting to use ACM on other domains.
andreas-venturini
commented
1 year ago Is it because you need a wildcard cert?
@friism This is the reason for us. We have apps with wildcard certs (e.g. to cover subdomains in the free pricing tier) but also allow customers to register their own domain (which we cannot use ACM for since apps that use ACM are not allowed to have wildcard domains) As also mentioned in https://github.com/heroku/roadmap/issues/39 - would be glad to chat and provide more feedback re our use case for this.
stevenharman
commented
1 year ago We have this very same problem. We need a wildcard cert for… reasons, but would love to manage a few other custom domains via ACM. But we cannot. So we're stuck doing everything manually. #39 would mean we could move everything to ACM. But even just allowing a mix of self-managed vs ACM would be a huge win.
andreas-venturini
commented
3 weeks ago It seems this is also covered by https://blog.heroku.com/heroku-acm-now-supports-wildcard-domains
Required Terms
What service(s) is this request for?
Heroku ACM
Tell us about what you're trying to solve. What challenges are you facing?
To my knowledge, currently when using a custom certificate (for example for Cloudflare Origin) ACM becomes unavailable also for other custom domains that normally would function with ACM.
It would be quite helpful to have this supported via ACM to reduce manual maintenance of certificates.
This seems somewhat related to https://github.com/heroku/roadmap/issues/39