An SSL Certificate provides privacy, critical security, and data integrity for both your projects and your users’ personal information. Having an SSL certificate installed on your project positively affects its credibility and search engine rankings. A trusted indicator for a correctly installed and configured SSL certificate should be https:// in the address bar. In fact, https is the secure version of http, which is the protocol over which data is sent between a browser and a website. The ‘s’ at the end of https stands for ‘secure’ which means all exchanges of information between the browser and the site are encrypted.
Certification Authority Authorization (CAA)
SSL certificates for domains are issued by Let’s Encrypt. If you restrict the list of organizations that can issue a certificate for your custom domain, you need to add letsencrypt.org to the list of Certificate Authorities (CAs).
To enable an SSL Certificate, please follow these steps
- Click on the Domain tab in your Project Settings or, if you mapped it to your profile page, you must reach your account settings and navigate to the Public profile section. Make sure you have a mapped custom domain name as the option to enable SSL will show only after adding one.
- Toggle the SSL switch. Wait a moment.
- Your domain name and all the internal links will be automatically switched from http to https.
Please note, there are some limitations:
- if you decide to migrate back from https to http, you’ll have to rewrite all links manually;
- if you have iPv6 enabled on your domain, the SSL can’t be turned on. You can check the iPv6-status of your website here: http://ipv6-test.com/validate.php
- if you use links inside scripts in Code Injection make sure that they have the same protocol as your domain.