Wildcard *.localhost SSL with Nginx and Chrome

google-chrome nginx ssl-certificate

Solution 1:

So ultimately the answer seems to be that you simply can't create a certificate for *.localhost that Chrome will accept.

My solution was to change to using *.dev.localhost instead, which worked a treat.

Solution 2:

It's actually fully possible. What it's not is particularly well documented.

https://letsencrypt.org/docs/certificates-for-localhost/#making-and-trusting-your-own-certificates shows how to generate your own localhost certificate

openssl req -x509 -out localhost.crt -keyout localhost.key \
  -newkey rsa:2048 -nodes -sha256 \
  -subj '/CN=localhost' -extensions EXT -config <( \
    printf "[dn]\nCN=localhost\n[req]\ndistinguished_name = dn\n[EXT]\nsubjectAltName=DNS:localhost\nkeyUsage=digitalSignature\nextendedKeyUsage=serverAuth")

You can then work out what extras signing a wildcard certificate needs. I believe this is as simple as providing a *. prefix (glob wildcard syntax) source

Installing a self-signed cert is documented elsewhere on stackoverlow regarding linux

Windows IDK, Mac IDC

Related

What is a PCIe slot with an "x4 slot" and "x16 connector"?
Does enabling JBOD mode on LSI based controllers affect existing logical disks/arrays?
Is there a block storage system that can create volumes span across multiple physical servers?
/var/run directory creation even though service is disabled
What is a SSATA port? [closed]
How to change SID of deployed server?
Remove Gitlab EE from Centos7
can the mname data in SOA record point to a cname?
Blocking or rate-limiting IPv6: what size prefix
Nginx - how to enable ssl for PHP when behind a reverse proxy
Filtering an inner join results
How to detect if all checkboxes are disabled?