New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Configuring OCSP #340
Comments
I would like to work on this issue. |
👋 @YashasviChaurasia Happy to assign this to you -- I believe this issue involves doing some investigation work into why exactly the referenced tooling reports that OCSP is disabled when the configuration generated by the tool includes OCSP. |
have we checked this? |
I have not investigated this, no. This issue is to investigate what is happening, which may mean you need to setup a test NGINX server to see if OCSP is working, and why it isn't if it isn't. |
How would I submit PR for this issue? I would like this issue to add up to my hacktoberfest PRs. |
If there is a bug in how we configure OCSP in the tool, then there'd be a need for a PR to fix that. But first, investigation needs to be done to see if the tool actually causes OCSP to not work, or if the issue is unrelated to the config the tool produces. |
Information
https://whatismybrowser.com/w/QCB7F49
Help request
Problem
OCSP is not enabled after using the generated configuration. Multiple tools (digicert helpers, ssllabs, openssl) report that OCSP is disabled. I made sure I was checking this on subsequent requests due to asynchronicity of the OCSP fetch.
What I have tried
The OCSP stapling configured in the
nginx.conf
The trusted certificate configured in the server block (some systems might require this when
ssl_stapling_verify
is on)The text was updated successfully, but these errors were encountered: