🐛 Bug Report: Demo webpage - certificate expired ? #528

Closed
opened 2026-02-04 20:21:47 +03:00 by OVERLORD · 2 comments
Owner

Originally created by @rpx99 on GitHub (Oct 30, 2025).

Reproduction steps

Not acceptable for a security demo!

Warning: Potential Security Risk Ahead

Firefox detected an issue and did not continue to 1d26f5de.demo.pocket-id.org. The website is either misconfigured or your computer clock is set to the wrong time.

It’s likely the website’s certificate is expired, which prevents Firefox from connecting securely. If you visit this site, attackers could try to steal information like your passwords, emails, or credit card details.

What can you do about it?

The issue is most likely with the website, and there is nothing you can do to resolve it. You can notify the website’s administrator about the problem.

Learn more…

Websites prove their identity via certificates, which are valid for a set time period. The certificate for 1d26f5de.demo.pocket-id.org expired on 10/29/2025.

Error code: SEC_ERROR_EXPIRED_CERTIFICATE

View Certificate

Expected behavior

No certificate error. Please fix and update process it does not happen again.

Actual Behavior

Certificate error warning in firefox

Pocket ID Version

x

Database

x

OS and Environment

x

Log Output

No response

Originally created by @rpx99 on GitHub (Oct 30, 2025). ### Reproduction steps Not acceptable for a security demo! Warning: Potential Security Risk Ahead Firefox detected an issue and did not continue to 1d26f5de.demo.pocket-id.org. The website is either misconfigured or your computer clock is set to the wrong time. It’s likely the website’s certificate is expired, which prevents Firefox from connecting securely. If you visit this site, attackers could try to steal information like your passwords, emails, or credit card details. What can you do about it? The issue is most likely with the website, and there is nothing you can do to resolve it. You can notify the website’s administrator about the problem. [Learn more…](https://support.mozilla.org/1/firefox/144.0/OpenBSD/en-US/time-errors) Websites prove their identity via certificates, which are valid for a set time period. The certificate for 1d26f5de.demo.pocket-id.org expired on 10/29/2025. Error code: [SEC_ERROR_EXPIRED_CERTIFICATE](about:certerror?e=nssBadCert&u=https%3A//1d26f5de.demo.pocket-id.org/setup&c=UTF-8&d=%20#certificateErrorDebugInformation) [View Certificate](javascript:void(0)) ### Expected behavior No certificate error. Please fix and update process it does not happen again. ### Actual Behavior Certificate error warning in firefox ### Pocket ID Version x ### Database x ### OS and Environment x ### Log Output _No response_
Author
Owner

@vicaya commented on GitHub (Oct 30, 2025):

Chrome doesn't work either. Since pocket-id.org is already handled by cloudflare name servers, it should be straightforward to setup certbot or cert-manager auto-renew of the wildcard certificate.

@vicaya commented on GitHub (Oct 30, 2025): Chrome doesn't work either. Since pocket-id.org is already handled by cloudflare name servers, it should be straightforward to setup certbot or cert-manager auto-renew of the wildcard certificate.
Author
Owner

@stonith404 commented on GitHub (Oct 30, 2025):

Should be fixed thanks. We have Certbot active, but we recently changed our Cloudflare account, so the API key for the DNS challenge has become invalid, and I forgot to update it.

@stonith404 commented on GitHub (Oct 30, 2025): Should be fixed thanks. We have Certbot active, but we recently changed our Cloudflare account, so the API key for the DNS challenge has become invalid, and I forgot to update it.
Sign in to join this conversation.
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: starred/pocket-id#528