I LOVE Local and not sure how I’ve lived without it. It’s an incredible tool that just makes development awesome again!
However…
The Local by Flywheel landing page say’s:
Any site created via Local by Flywheel will automatically have a self-signed certificate created. Green padlock achieved!
I’ve never received or achieved a Green padlock. I “Trust” the certificate in Local, add the exception when prompted in Firefox but no joy.
Here’s what I get in Firefox:
Chrome is even more aggressive.
This also leads to having SSL issues when working with AJAX (with third-party services - I have to use jQuery linked from Google and not my WP install) and ngrok.io simply never plays nice unless I remove the https from the URL with every page I visit from a development site.
What would I need to do to achieve that elusive green padlock so I know that the SSL is truly working properly?
Thanks for your help! I really need to get this sorted
Local creates a fake SSL certificate with your website’s .dev name in the Mac’s Keychain database.
You may have to remove this fake SSL certificate from your Keychain and create a new one in the SSL feature of Local so that Google will trust your development website.
Yes - I’m running Local 2.0.3. I’ve been using Local since the day it was released by Flywheel and have upgraded manually until the auto-updater came out.
On forcing the certificates to update I’ve:
Deleted the routes and router folders
Deleted all exceptions previously added in Firefox
Removed ALL instances of the certs added to Mac’s Keychain DB (thanks @marianco!)
Restarted the site in Local
Attempted to visit the restarted site via the “View Site” button in Local
Received the Firefox error that I needed to add an exception
Added the exception to Firefox
Still no joy and all is the same
Still receiving the “Not Secure” warning by Chrome as well.
I’m happy to try anything else that may help solve this mystery.
Thank you both for replying and helping me out on this!
Thanks for the article. Firefox walks you through doing this but I went ahead and tried everything above again except this time I manually entered the exception in Firefox - still no joy there though. It was worth a shot!
I’m still curious though - are you able to achieve a green padlock in Firefox on your side or if it’s just me.
Sorry to jump on this months later, but I have what is probably a very easy-to-answer question: Where is the library folder? I’m having the same issue with SSL certs and can’t find it.
Thanks for a good thread. A couple of questions. I’m on Win 10.
It still not working for me in Chrome. I tried to delete the routes folder, but could not find the router folder. I am running an Apache environment. How will I know when the certs have been updated? Mine says OpenSSL version 1.0.1t 3 May 2016.
In Chrome it doesn’t even load the stylesheet. Chrome says it unsafe script. If I click and tell Chrome to disregard that and accept the unsafe scripts the site loads ok. But not over https. Not even in admin area. I also get errors running ajax in the admin area because chrome will not load a bunch of scripts - it blocks them and because of not being on HTTPS.
I don’t get the site over HTTPs in Firefox, but at least it works as expected and is usable in the admin area without Ajax errors.
That did however not work. Maybe there something else that is the problem.
When I open the site in Chrome I get certificate valid, but it doesn’t load the scripts. There is an icon in the address bar with a shield and red x on it. If I click it it asks if I want to load the unsafe scripts - These are all scripts that are loaded locally. Then the site reloads with stylesheets and scripts and renders as it should. However it does not get a green https, it is red and it says unsecure. That causes problem for me in the admin as well as other places.
If click trust in SSL in Local it changes to trusted. But if I click Site setup and then back to SSL it no longer says Trusted instead it says Trust.
