795439 - Bouncer needs SSL Support

Status: RESOLVED FIXED

(Infrastructure & Operations Graveyard :: WebOps: Other, task)

Description

[Melissa O'Connor [:melissa]]

This is an outcome of the stubinstaller meeting today.

Comment 1

[Jake Maul [:jakem]]

This is completed. It turns out we already bought an SSL cert for this almost a year ago, and never set it up... don't know why (lack of time maybe, or possibly a change in focus). All I had to do was turn up a Zeus virtual server to make it go.



curl -v 'https://download.mozilla.org/?product=firefox-15.0.1&os=osx&lang=en-US' -o /dev/null

Returns:

< HTTP/1.1 302 Found
< Date: Mon, 01 Oct 2012 19:43:36 GMT
< Server: Apache
< X-Backend-Server: pp-app-dist07
< Set-Cookie: dmo=10.8.84.213.1349120616962671; path=/; expires=Tue, 01-Oct-13 19:43:36 GMT
< X-Powered-By: PHP/5.1.6
< Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0, private
< Pragma: no-cache
< Location: http://download.cdn.mozilla.net/pub/mozilla.org/firefox/releases/15.0.1/mac/en-US/Firefox%2015.0.1.dmg
< Content-Length: 0
< Content-Type: text/html; charset=UTF-8


At this point I believe any link to bouncer can now be https:// instead of http://. This should not affect the actual functionality.

However, :Rik is brought up a concern that an https->http redirect (accessing bouncer over HTTPS, and being redirected to an HTTP mirror) might be a concern with some browsers. I believe this is likely not a problem, but it definitely warrants some investigation to be sure.