NET::ERR_CERT_AUTHORITY_INVALID about hfs HOT 9 CLOSED

Sei davvero un grande. in 5 minuti installato Certbot. Ottenuto certificato valido con funzione di rinnovo automatico ogni 90 gg. che dire... Questo HFS è il top.

from hfs.

this is the dialog you currently get when creating the certificate inside HFS

The "warning" it speaks about is exactly the one you are getting, and I have this "get better certificate button" (linking https://letsencrypt.org).
It is my goal to make this dialog clear, of course, and if you have a suggestion on this I will consider it.
It's not easy to be both clear and short. If it's long people won't read it.
My final goal on this is to (easily) produce the better certificate. It's in my to-do list.

from hfs.

Well, as a suggestion :

• The textarea shoud have, instead of "Enter a domain or leave empty", an explanation of what it does as a default input. As I said, I don't know what it's about precisely. If it's about linking to a website that is usually an authority in referencing certificates to make them being public, just say it. If it's about linking to an already existing certificate, say it. But we don't know !!! You're supposed to be the one who know what this form does on the page.

• The first button (in blue) should not be "Continue" but "Send".

• Then, the second button should be something more precise than "Get better certificate". Firstable, we don't know why we should have a better one (don't say me "Of course you know ! You talked about it !!" - Yeah but at the moment we don't know a damn thing about it, at all).

It's not easy to be both clear and short. If it's long people won't read it.

Yeah but for such an important and vital thing, they will.

Just display a red message on the top of the popup saying "WARNING : This is an important step, involving the way webusers will access comfortably your website ! Please read carefully the details below !".

And then, in two paragraphs :

"To access your website in HTTPS, a certificate need to be built by HFS. There is two ways to built them : privately (wich is a faster process), or publicly (longer because we need to declare it on an authorized referent). If private, users will have a warning message in their web browser, saying that the certificate is not recognized."

"Please chose the way you want to create it :"

Then, the two buttons should be related to these choices, like :

[ Private ] [ Public ]

And after that, I don't know, it's up to you to do what to do to perform the public processes required to authorize the certificate (maybe redrection, I don't know).

from hfs.

scusate... mi pare di capire che con HFS è possibile creare un certificato.......
forse mi sono perso qualcosa. Io ho creato un certificato personale che ovviamente da un messaggio di avviso " certificato non valido " essendo autoprodotto.
Mi dai informazioni dettagliate su come creare un certificato con HFS ?
Grazie

from hfs.

Mi dai informazioni dettagliate su come creare un certificato con HFS ?

anche il certificato che ti crea HFS è autoprodotto e dà l'avviso, perciò non hai motivo di rifarlo. Se togli il tuo vedrai comparire il bottone per farne uno nuovo.

from hfs.

from hfs.

just to be clearer, at the moment the best solution to this problem is to get a trusted certificate from https://letsencrypt.org/
or any other certificate issuer.
In the future I hope HFS will make this for you.

from hfs.

also, I will try to improve the dialog above, to be clearer

from hfs.

@Heraes-git thanks for your suggestions.
The underlying certificate-generator wants this "domain" field, so at the time I just decided to NOT omit it, as potentially useful.
From my tests, it makes no practical difference (to Chrome at least), so I'm removing it.
The result is a shitty certificate in every case.
It is still the minimum necessary to get https working.

So, I'm trying to improve like this: before the dialog, I'm adding a link what's this so that you can learn about the whole story

And this would be the new dialog clicking "make one"

and the "beware" link is the same as above, where you can see in a video the same warning the user will see.

I hope so to keep it very short, while letting you access the long version by clicking the link.
The yellow color, warning sign, and "BEWARE" word should give you the right level of attention.

from hfs.