LogoLogo
Deploy NowCommunity Careers
  • Introduction to StackAI
  • Litepaper
  • FAQs
    • Introductory FAQs
    • Technical FAQs
    • Project/App FAQ
    • Financial FAQs
  • Tokens
    • Add $STACK to MetaMask
    • Buy $STACK Tokens
  • App Deployment on StackOS
    • Custom App Deployment
    • AppStore App Deployment
    • Deploy a Containerized Application on StackOS
  • Basic Operations
    • Create WebTTY
    • WebTTY, Logs, Shell Access
    • Practice - Persistent Data, Alternate User
    • Reset StackOS Account
    • Map a container port
    • Custom DNS
    • Custom SSL
    • Account Funding - General
    • Pod Launch - General
  • Preparing Custom Images
    • Docker Hub Intro
    • GitHub, DockerHub and StackOS Integration
  • App Store Notes
    • Redis on StackOS
    • Memcached on StackOS
    • Presearch on StackOS
    • Wordpress on StackOS
    • Jenkins on StackOS
    • WebDAV on StackOS
  • Useful Apps
    • phpMyAdmin (Mysql Web Admin)
  • Wordpress Operations
    • Launching a Wordpress app on StackOS
    • WordPress Migration
    • Account Funding - Wordpress
    • Upload limit increase
    • SSL Mixed Content Resolution
    • Wordpress Domain Change
  • Other Applications
    • Python Applications
    • RSK
  • 0xMarket
    • Viewing your NodeNFT
    • Listing your NodeNFT
    • Buying a NodeNFT
Powered by GitBook
On this page
  • Prerequisites
  • Choose your SSL Mode
  • Cloudflare Flexible SSL
  • Cloudflare Strict SSL
  • Generate Origin Certificate
  • Enable Cloudflare Strict Mode
  • For all subdomains
  • For a single domain
  1. Basic Operations

Custom SSL

PreviousCustom DNSNextAccount Funding - General

Last updated 2 years ago

Prerequisites

First ensure your pod has a custom DNS assigned to it. This guide shows you how:

Choose your SSL Mode

Flexible SSL encrypts the data from Cloudflare to the End User, but does not enforce encryption between your Pod and Cloudflare. This is fine for most cases where information is meant to be public (most informational websites and DApps without user specific info being served)

Strict SSL encrypts the data both from CloudFlare to the End User as well as the data between your Pod and Cloudflare. This is best when you are serving sensitive data such as personal user info (common with Web2 based sites with personal information kept behind a login)

Flexible provides the fastest setup and Strict provides a more complete encryption solution with a few more technical steps.

Both options are completely valid which is why they are both supported. Pick the one that matches your requirements best.

Cloudflare Flexible SSL

In CloudFlare, navigate to SSL/TLS > Overview

Select Flexible

Cloudflare Strict SSL

The following will REQUIRE you to use Cloudflare to create an SSL Certificate.

Generate Origin Certificate

Go to your domain in Cloudflare and manage your "Origin Server" certificate

Create a Certificate

Configure your certificate type, domains and lifetime

Copy the Certificate and Key and paste into StackOS Pod Configuration

Your should see your certificate listed

Enable Cloudflare Strict Mode

Activate this style of Origin certificate in two ways:

1) By default for all subdomains of your domain

2) ONLY for a single domain.

For all subdomains

For a single domain

Go to Rules > Page Rules

Create Page Rule

Configure Page Rule

Resulting Page Rule

Custom DNS