I have a standalone using SSL. It was working great and I have it deployed on an Azure Worker Role.
But with my previous publish the login page would show and then it would kill the session.
With my current publish I get a connection reset error whenever I try to connect via HTTPS
Firefox:
[quote]The connection was reset
The connection to the server was reset while the page was loading.
The site could be temporarily unavailable or too busy. Try again in a few moments.
If you are unable to load any pages, check your computer's network connection.
If your computer or network is protected by a firewall or proxy, make sure that Firefox is permitted to access the Web.
[/quote]
Chome:
[quote]The connection to prefix.myWebsiteUrl.com* was interrupted.
Check your Internet connection
Check any cables and reboot any routers, modems, or other network devices you may be using.
Allow Chrome to access the network in your firewall or antivirus settings.
If it is already listed as a program allowed to access the network, try removing it from the list and adding it again.
If you use a proxy server…
Check your proxy settings or contact your network administrator to make sure the proxy server is working. If you don’t believe you should be using a proxy server: Go to Applications > System Preferences > Network > Advanced > Proxies and deselect any proxies that have been selected.
Error code: ERR_CONNECTION_RESET[/quote]
Does these mean the app was launched without Https enabled? Can I check to see somehow if the app is listening on the Https port?
[quote=135913:@Norman Palardy]I have a standalone using SSL. It was working great and I have it deployed on an Azure Worker Role.
But with my previous publish the login page would show and then it would kill the session.
With my current publish I get a connection reset error whenever I try to connect via HTTPS[/quote]
Change my browser? The certificate? The Xojo App? The server running the Xojo App?
How do clients connect to this app ?
Is it just web browsers ?
Do they need to use HTTPS ?
If so then that could be changed because of poodle.
But I can’t tell because this is your app running where ever you have it and your service provider should have notified you IF they were disabling SSL off so that TLS HAD to be used.
Some have outright disabled SSL and the various fallbacks.
They connect through https on a web browser.
Currently I have it allowing http traffic but I will eventually need to force it to be https only as this will be a secure payments portal running transactions.
When I downloaded the public keys for the SSL certificate from GoDaddy I did get two files. One with one long public key and another with 3 short public keys (bunlded). I used the 3 shorter keys, but do I maybe need to use the one long one? Can I use all 4 for Xojo in my cert file?
[quote=135940:@Brock Nash]They connect through https on a web browser.
Currently I have it allowing http traffic but I will eventually need to force it to be https only as this will be a secure payments portal running transactions.
When I downloaded the public keys for the SSL certificate from GoDaddy I did get two files. One with one long public key and another with 3 short public keys (bunlded). I used the 3 shorter keys, but do I maybe need to use the one long one? Can I use all 4 for Xojo in my cert file?[/quote]
Go read my blog post about this: http://www.xojo.com/blog/en/2014/01/web-standalone-ssl.php
Not sure if related; however, intermediate certificates are broken within Xojo. I reported this awhile back here (and filed a feedback report on it as well):
I noticed too that on his Twitter, Brad has finally come to realize this also… (notice in the link I provided he said it was a FireFox issue). Hi Brad…
No SSL certificates were found on demo.connectboosterportal.com. Make sure that the name resolves to the correct server and that the SSL port (default is 443) is open on your server’s firewall.[/quote]
The worker role allows me to automate publishing and auto-scale the web app. I’ve considered setting up a virtual machine but I really dont want to have to set up a reverse proxy in IIS if I can help it.
For what it’s worth, I just checked this on OS X, Windows and Linux using our certificate, which has an intermediate bundle with four certificates in it and it works as expected on all three platforms.
Also, I am not using openssl for verifying, I’m using our supported browsers.
[quote=136540:@Greg O’Lone]
Internet Explorer does not come with TLS turned on by default. [/quote]
V11 seems to but folks should at least verify its on