<TimMc>
johndoe123[m]: Sure, PM me and I'll take a look.
<johndoe123[m]>
TimMc: thank you
<ocdtrekkie>
Does anyone know the status of meteor-spk with the current version of Meteor? Issues seem to claim it supports it now, but the issue is also still :open:
<TimMc>
johndoe123[m]: (recap from PM) The self-signed wildcard cert is interfering with some kind of self-test Sandstorm is doing.
<johndoe123[m]>
TimMc: I am on google, searching this error message to try to bypass it
<TimMc>
I think you need to tell your browser to permanently trust that cert, rather than telling it "ignore this cert error" when browsing your site.
<johndoe123[m]>
ahhhh ok !
<TimMc>
Might also be worth checking the sandstorm github issues to see if someone has reported this; if the docs don't already mention this failure mode, they should, and the self-test should probably also take this possibility into account.
<johndoe123[m]>
ok, so I can notice this "bug", or eventuality
<johndoe123[m]>
sandstorm is a relly nice name, but every time I search something about it on google, I fall on the Darude song
<johndoe123[m]>
I'm sure it increase the youtube view of the song ;)
<TimMc>
ha
<TimMc>
By the way, you can play Sandstorm in your Sandstorm using GrooveBasin. :-)
<johndoe123[m]>
eh eh, I will later
<johndoe123[m]>
by the way I was surprise, I didn't see the option to download music from youtube. Usually I use directly the youtube-dl script, but when I saw they was this option, I was thinking it's definitly a wife friendly option ! but maybe the GrooveBasin is too old
<johndoe123[m]>
TimMc: the certificate was already trusted and imported inside firefox. So I have removed it, reinstall it with the full optiosn to trust it, but it doesn't work
<kentonv>
johndoe123[m], TimMc, indeed, it doesn't work to click through the browser warning for a self-signed cert, because you also need to click through on every subdomain, but there are infinity subdomains, and the warning won't appear inside an iframe or XHR.
<johndoe123[m]>
kentonv: so it's impossible to use a selfsigne certificate with sandstorm ?
<kentonv>
johndoe123[m], you have to add it to your browser's trusted store. You can't just click through the warning.
<kentonv>
but if you add it to the trusted cert set it should work
<johndoe123[m]>
kentonv: I have tried, but maybe I have done a mistake
mnutt_ has quit [Quit: My MacBook has gone to sleep. ZZZzzz…]
<kentonv>
johndoe123[m], I've never tried using a self-signed cert myself so I don't know all the details
<kentonv>
if you go to foo.sandstorm.example.com, what does it say? If it's working you should see "No such grain for public ID: foo"
<johndoe123[m]>
kentonv: the self signed certificate appear in the certificate panel in firefox
<johndoe123[m]>
kentonv: indeed : No such grain for public ID: toto [404]
<kentonv>
did you have to click through any cert warnings first?
<kentonv>
if not, then it seems like it's working?
<johndoe123[m]>
but I had to add an exception again on the certificate, so maybe I didn't add it correctly
<johndoe123[m]>
our message crossed
<kentonv>
ah yeah. Probably the exception only exists for sandstorm.example.com but not for *.sandstorm.example.com
<kentonv>
I'm not sure how to make Firefox recognize the certificate for the whole wildcard
<johndoe123[m]>
I am searching right now
<johndoe123[m]>
kentonv: and TimMc thank you very much for the help :)
<kentonv>
what sites does the certificate designate for CN and SAN? Is the wildcard in there? Or only the base host?
<johndoe123[m]>
kentonv: yes the wildcart is in the CN *.sandstorm.exemple.com
<johndoe123[m]>
kentonv: but I don't see anything about SAN on the certificate
HeyItsMeUrIRC has joined #sandstorm
<HeyItsMeUrIRC>
are sandstorm stickers available?
<HeyItsMeUrIRC>
if not, when will sandstorm stickers be available
jadewang has quit [Remote host closed the connection]
<HeyItsMeUrIRC>
also; attribute the name plan9best9 to that
<HeyItsMeUrIRC>
it's my github alt
<HeyItsMeUrIRC>
so my parents don't find shit like this on my main one
<johndoe123[m]>
kentonv & TimMc : ohhhh but there is free certificate with let's encrypt, niiiice :) I will Try
<kentonv>
johndoe123[m], Let's Encrypt doesn't do wildcards, so it won't work.
<kentonv>
johndoe123[m], we provide free certificates if you use a subdomain of sandcats.io, though
<johndoe123[m]>
ok, too bad
<johndoe123[m]>
kentonv: yes but I need to check again why I have avoided this option. I guess this is because I had to share the port 443 or something like that
<TimMc>
johndoe123[m]: In Firefox » Preferences » Advanced » Certificates » Servers you *might* be able to import your self-signed cert and have it work for all subdomains. Maybe.
<johndoe123[m]>
TimMc: no it doesn't work I already tried