SSL Certificates

HTTPS is essential for FeedbackPulse SaaS. It protects login credentials, payment data, and customer information in transit.

Option 1: Let's Encrypt (Free & Recommended)

For a Single Domain

# Install Certbot
sudo apt install certbot

# For Nginx:
sudo apt install python3-certbot-nginx
sudo certbot --nginx -d yourdomain.com -d www.yourdomain.com

# For Apache:
sudo apt install python3-certbot-apache
sudo certbot --apache -d yourdomain.com -d www.yourdomain.com

Certbot will:

Obtain the certificate
Automatically configure your web server
Set up auto-renewal (via systemd timer)

For Wildcard (Subdomains)

See the detailed instructions in Wildcard DNS Setup.

Verify Auto-Renewal

# Test renewal (dry run)
sudo certbot renew --dry-run

# Check the timer
sudo systemctl status certbot.timer

Option 2: Paid SSL Certificate

If you prefer a paid certificate:

Generate a CSR (Certificate Signing Request):

openssl req -new -newkey rsa:2048 -nodes -keyout yourdomain.key -out yourdomain.csr

Submit the CSR to your certificate provider
Download the certificate files
Install in your web server configuration

Option 3: Cloudflare SSL (Free)

If your domain uses Cloudflare:

In Cloudflare dashboard → SSL/TLS
Set mode to Full (Strict)
Cloudflare provides SSL between visitors and Cloudflare
Use a Cloudflare Origin Certificate for the connection between Cloudflare and your server

Post-SSL 配置

After enabling SSL, update your .env:

APP_URL=https://yourdomain.com
SESSION_SECURE_COOKIE=true

Option 1: Let's Encrypt (Free & Recommended)​

For a Single Domain​

For Wildcard (Subdomains)​

Verify Auto-Renewal​

Option 2: Paid SSL Certificate​

Option 3: Cloudflare SSL (Free)​

Post-SSL 配置​

下一步​