Commit f7b0885a authored by Markus Wigge's avatar Markus Wigge

Fix nameConstraints to allow subdomains.

According to the
DNS name should be prefixed with a leading "." to allow hosts and
subdomains based on that name.
parent 81dabe74
......@@ -130,7 +130,7 @@ get_openssl_name_constraints_directive () {
local name_constraints
case "${config['name_constraints']}" in
name_constraints="nameConstraints = critical, permitted;DNS:${config_domain}"
name_constraints="nameConstraints = critical, permitted;DNS:.${config_domain}"
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment