can't publish in a way that's HTTPS

newsdev / driveshaft

Google Drive → JSON → S3

https://newsdev.github.io/driveshaft/

Other

74 stars 8 forks source link

can't publish in a way that's HTTPS #19

Open jeremybmerrill opened 9 years ago

jeremybmerrill commented 9 years ago

Driveshaft can't publish in a way that the output JSON file is accessible over HTTPS.

https://int.nyt.com/ doesn't work because the cert is for s3.amazonaws.com.

https://int.nyt.com.s3.amazonaws.com/ doesn't work because wildcard certs only match one level of dots down.

The solution, I think, is to make Driveshaft publish to a bucket with no dots in the name. I think @buth is creating one, called newsdev-secure-internal or something or like.

buth commented 9 years ago

This should be set outside of providing IAM permissions for Driveshaft to write to that bucket.

Ideally, we'd only give Driveshaft access to a subdirectory (/driveshaft).