Brave browser says the site cert is expired. It forces me to click through four little buttons to confirm I really, really, really want to connect to the site before it'll reluctantly allow access.
Firefox says the site cert is self-signed and therefore worthless. It only forces me to click three little buttons before it'll reluctantly allow access.
Edge and Chrome say the site cert is invalid. Only two clicky buttons, although one is hidden in the browser security settings and clicking it has global consequences.
DDG browser simply says the site is unsecure and refuses to allow any access, without offering any override of "safety" and "security" to reckless and foolish users who dare to visit the keep through open doors.
Need to renew the cert? Extra aggressive locks vs extra aggressive spambots? Whatever it may be, I think it's scaring away legit visitors. It makes Candlekeep.com look like one of those shady strange sites worth avoiding in an internet filled with ten thousand other "secure" D&D/Realms forums.
I don't normally use all those browsers, either. But I'm doing a website for somebody and want to confirm that it works properly on popular browsers. Candlekeep is one of the sites I check for comparisons because I already know exactly what it should look like.
quote:Originally posted by Wooly Rupert
The cert expired a while ago, and Big Al did not renew it. Just change your bookmark or whatever from https:// to http://
Thanks! I know I could fix the annoyance. And no Seriously Worded Warning could keep a crusty old scribe like me out of Candlekeep anyhow.
I was just reporting the troublesome behaviour I observed on clean default-installs.
Yes this is annoying and apologies for the inconvenience. The host have locked down the ability to provision certificates manually as a means to enforce paying over the odds for certs with them. It's "on the list" to resolve one day, however.
Site certificate
Posted - 10 Aug 2025 : 18:49:52
