New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

TLS cert #89

Open

ghost opened this issue Sep 1, 2018 · 1 comment

Labels

blocked

Milestone

ghost commented Sep 1, 2018

Https please.

jpdillingham added the blocked label

Member

jpdillingham commented Sep 1, 2018

The backend api is https, so client server communications are secure.

That being said, I understand the value of securing the static content, and this is a future goal. This is not possible at the moment because:

It is not possible to apply an ssl certificate to static files hosted from an S3 bucket without also using CloudFront
In order to configure a certificate for CloudFront, the domain to which the certificate applies must be hosted in Route53
Moving the QC Coders domain to Route53 isn't feasible at this time due to organizational constraints

I'll leave this issue open so we don't lose sight of the goal but there's currently no timeline to implement this.

jpdillingham added this to the Future milestone

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment