vigil
vigil copied to clipboard
SSL/TLS Certificate verification
Is there a way to validate a SSL/TLS certificate validity?
Motivation: I use Let's Encrypt but, sometimes, renew goes wrong and... certificate is obsolete. Having a probe for that can help a lot.
Please, note that ideally this verification should be distinct enougth from HTTPS polling as someone can desire to register an URL returning an error code (404, 401...). But as we only wish to validate certificate, this shoul be enough.
Hello,
No way to validate certificates independently for now. The only way to do it is via an HTTPS URL. Whenever the probe starts failing, it means that the certificate is not valid anymore.
Is it possible to improve feedback (in tooltip) in order to identify the nature of the failure? Currently, a failing HTTP replica can have:
- DNS issue
- node unavailable
- TLS certificate issue
- HTTP (404?) issue
Having an information on the origin of the error can help to quickly identify what to do.
I would love to be able to modify the tool-tip text using the current script probes.