W3C home > Mailing lists > Public > public-xg-webid@w3.org > April 2011

Re: WebIDauth - authentication service written in PHP.

From: Henry Story <henry.story@bblfish.net>
Date: Sun, 10 Apr 2011 12:01:53 +0200
Cc: nathan@webr3.org, public-xg-webid@w3.org
Message-Id: <CC637B8B-AB61-4E74-9637-F0F39A2E2A72@bblfish.net>
To: Andrei Sambra <andrei@fcns.eu>

On 9 Apr 2011, at 23:22, Andrei Sambra wrote:

> On Sat, 2011-04-09 at 22:07 +0100, Nathan wrote:
>> Andrei Sambra wrote:
>>> On Sat, 2011-04-09 at 13:05 +0200, Henry Story wrote:
>>>> On 9 Apr 2011, at 12:44, Andrei Sambra wrote:
>>>>> https://auth.fcns.eu/.
>>>> I get on OSX Safari 5.0.4 (6533.20.27)
>>>> "Safari can’t open the page “https://auth.fcns.eu/” because Safari can’t establish a secure connection to the server “auth.fcns.eu”.
>>>> This is probably a problem with your ssl setup.
>>> I don't see why. My server uses a valid SSL certificate, signed by a
>>> known CA.

I applied the latest patches for OSX, rebooted and I still get that problem. Safari is a bit
tricky with SSL. 
I could not find anything about fcns in my keychain.

>> blind off the top reply:
>> if you use startssl to issue free certs, safari doesn't have the trust 
>> chain for it - iirc

This trust chain issue is a bit tricky. I think there was a post on it on the foaf-protocols
list a little while ago. And the order is important. If someone can find it please post here
and add to HOWTO on wiki.

> I'm afraid it's just a propagation error for now (dns cache maybe?). I
> am now using a server certificate issued by AlphaSSL, which is indeed
> trusted by most browsers. I hope it's just a temporary issue.

I don't think it is trusted by Firefox 4 by default. I had to add a security exception to it to
get it to work. With Opera I connected without problem.

>> that could be it,
>> best,
>> nathan

Social Web Architect
Received on Sunday, 10 April 2011 10:02:25 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 19:39:43 UTC