Enable/Enforce HTTPS (and perhaps update DNS)

[AM2i9]

Going to https://farmingtonrobotics.org, the TLS certificate given is not for the domain, but is a certificate for the *.github.com domain. Just typing in farmingtonrobotics.org sends you to the site without TLS ecryption.

I have also noticed, from this, that the domain has two records:

These supposedly link to github pages. However, the addresses that github provides in their documentation is different than these two, so the perhaps need to be updated:

https://docs.github.com/en/pages/configuring-a-custom-domain-for-your-github-pages-site/managing-a-custom-domain-for-your-github-pages-site#configuring-an-apex-domain

[barrontim]

Patrick,

I am aware of this and will fix so we have an https connection to the site. I’ll let you know when it is done and you can test it.

Tim

On Fri, Jul 9, 2021 at 5:26 PM Patrick Brennan @.***> wrote:

Going to https://farmingtonrobotics.org, the TLS certificate given is not for the domain, but is a certificate for the *.github.com domain. Just typing in farmingtonrobotics.org sends you to the site without TLS ecryption.

[image: image] https://user-images.githubusercontent.com/52932656/125137078-f782c680-e0d9-11eb-8560-7b125d4df642.png [image: image] https://user-images.githubusercontent.com/52932656/125137229-46306080-e0da-11eb-8686-55d9c6650012.png

I have also noticed, from this, that the domain has two records:

[image: image] https://user-images.githubusercontent.com/52932656/125137300-65c78900-e0da-11eb-9e76-ef7305a18810.png

These supposedly link to github pages. However, the addresses that github provides in their documentation is different than these two, so the perhaps need to be updated:

https://docs.github.com/en/pages/configuring-a-custom-domain-for-your-github-pages-site/managing-a-custom-domain-for-your-github-pages-site#configuring-an-apex-domain

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub https://github.com/team178/team178.github.io/issues/152, or unsubscribe https://github.com/notifications/unsubscribe-auth/AB53HZDCTZ7WDRJ2AUJTIZLTW5SRZANCNFSM5ADO7CPA .

-- Tim Barron Computer Science Teacher Farmington High School Farmington Public Schools E: @.*** W: 860 673 2514 x79266 C: 860 985 7035

Co-Head Coach of Farmington HS FIRST Robotics Competition Team 178 2013 FIRST Woodie Flowers Award Finalist UTC CT Regional 2017 NCWIT Aspirations in Computing Educator Award Winner Connecticut

--

The documents accompanying this fax or e-mail transmission, including any attachments, are for the sole use of the intended recipients and MAY contain confidential school, health or other information that is legally privileged. The authorized recipient of this information is prohibited from disclosing this information to any other party unless required or permitted to do so by law or regulation. 

If you are NOT the intended recipient you are hereby notified that ANY disclosure, copying, or further distribution of the contents of these documents is prohibited. If you have received this information via facsimile in error, please notify the sender immediately and arrange for the return or destruction of these documents. If information is received via e-mail and you are not the intended recipient, please contact the sender by e-mail immediately and delete/destroy both the original and the reply e-mail message.

[AM2i9]

Here's some information about HTTPS and GitHub Pages https://docs.github.com/en/pages/getting-started-with-github-pages/securing-your-github-pages-site-with-https

[barrontim]

This morning I updated our DNS zone at Network Solutions, pulled a new cert, and enabled https. It’s working for farmingtonrobotics.org and sub domain www. All website html css and js scripts will need to be gone through and any references to our url will need to be updated to have the s in https Also

farmingtonrobotics.com has an issue I am looking to figure out still as does dreamfirst.org

If anyone knows how we we’re doing the redirect in GitHub pages that sent requests from dreamfirst.org to the dream first index page please chime in. @TJScalzo @EkVasilyeva

[TJScalzo]

I just fixed the redirect from DreamFirst.org with this change.

All of the internal links between pages of the main site should be using a URL in the the config file. So theoretically the change I made here will solve any issues with that.

I wasn't aware that we owned farmingtonrobotics.com, so I'm not entirely sure how that worked before moving to https. This post on the GitHub Community might be helpful as it seems GitHub Pages doesn't natively support redirecting multiple domains.

The reason some things still aren't working on the website is because links to external sites (like when we import fonts from Google or Adobe) are still http and so the browser blocks the insecure content from being loaded. Someone will need to go through and update those URLs. This type of search might be useful. @barrontim @EkVasilyeva @AM2i9

[barrontim]

Thanks. I had forgotten we have dreamfirst as a separate repository. Is it part of the 178 GitHub organization? I guess we could create a site for farmingtorobotics.com and use a meta tag to just send it to our .org site. The reason we own farmingtonrobotics.com is so someone else doesn’t buy it and put something we don’t like there. Coaches will discuss.

Tim

On Fri, Jan 7, 2022 at 4:41 PM Tim Scalzo @.***> wrote:

I just fixed the redirect from DreamFirst.org with this change https://github.com/DreamFIRST/dreamfirst.github.io/commit/92ff08c6a1c940720ca23e796e6ad4fac0c26979 .

All of the internal links between pages of the main site should be using a URL in the the config file. So theoretically the change I made here https://github.com/team178/team178.github.io/commit/bea088b636137efbdbf117788acbcc9aed1ac1e3 will solve any issues with that.

I wasn't aware that we owned farmingtonrobotics.com, so I'm not entirely sure how that worked before moving to https. This post https://github.community/t/redirect-multiple-domains-to-one-github-pages-site/10903/5 on the GitHub Community might be helpful as it seems GitHub Pages doesn't natively support redirecting multiple domains.

The reason some things still aren't working on the website is because links to external sites (like when we import fonts from Google or Adobe) are still http and so the browser blocks the insecure content from being loaded. Someone will need to go through and update those URLs. This https://github.com/team178/team178.github.io/search?p=1&q=http%3A%2F%2F type of search might be useful.

— Reply to this email directly, view it on GitHub https://github.com/team178/team178.github.io/issues/152#issuecomment-1007760280, or unsubscribe https://github.com/notifications/unsubscribe-auth/AB53HZG537H3GYO6XD5F72TUU5M2BANCNFSM5ADO7CPA . Triage notifications on the go with GitHub Mobile for iOS https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675 or Android https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub.

You are receiving this because you commented.Message ID: <team178/team178. @.***>

-- Tim Barron Computer Science Teacher Farmington High School Farmington Public Schools E: @.*** W: 860 673 2514 x79266 C: 860 985 7035

Co-Head Coach of Farmington HS FIRST Robotics Competition Team 178 2013 FIRST Woodie Flowers Award Finalist UTC CT Regional 2017 NCWIT Aspirations in Computing Educator Award Winner Connecticut

--

The documents accompanying this fax or e-mail transmission, including any attachments, are for the sole use of the intended recipients and MAY contain confidential school, health or other information that is legally privileged. The authorized recipient of this information is prohibited from disclosing this information to any other party unless required or permitted to do so by law or regulation. 

If you are NOT the intended recipient you are hereby notified that ANY disclosure, copying, or further distribution of the contents of these documents is prohibited. If you have received this information via facsimile in error, please notify the sender immediately and arrange for the return or destruction of these documents. If information is received via e-mail and you are not the intended recipient, please contact the sender by e-mail immediately and delete/destroy both the original and the reply e-mail message.

[TJScalzo]

@barrontim The dreamfirst.org website repository is owned by the Dream FIRST organization of which you and I are the only members. This is because GitHub Pages used to only allow one custom domain per organization/user. It had to be a repository in a separate organization to use a different domain. GitHub Pages has become much more sophisticated since then and you can now assign a custom domain for any repository in an organization. So it could theoretically be moved to the team178 organization if desired.

This might be why you're having an issue enforcing https with dreamfirst.org - It's a separate repository deployed as a separate GitHub Pages instance. It seems like you may have to do what you did for farmingtonrobotics.org again for dreamfirst.org since its settings page says an https certificate hasn't been issued for the its domain.

It's entirely possible to make a farmingtonrobotics.com repository that has its own custom domain with GitHub Pages that then redirects at the HTML level to the equivalent farmingtonrobotics.org page. It should also be possible to set up a redirect at the domain level. Whatever is easier to maintain is probably the best option. Here is an article on redirecting a Google Domain. Network Solutions seems to charge for web forwarding.