Multi-Domain (SAN/UCC) SSL certificates

Reference URL:

https://cheapsslsecurity.com/blog/how-to-secure-multi-level-subdomains/

 

What is a Multi-Domain Wildcard SSL Certificate?

A multi-domain wildcard SSL certificate is the perfect solution for situations where you need to secure multi-level subdomains. It allows encrypting multiple levels of subdomains with one certificate. Like the wildcard certificate, it can work whether the sites are on the same or separate servers.

----------

With a wildcard SSL certificate, the solution is a bit simpler. You can purchase 7 wildcard SSL certificates, to protect:

*.domain.com

*. blog.domain.com

*.preview.domain.com

*.project1.preview.domain.com

*.project2.preview.domain.com

*.project3.preview.domain.com

*.project4.preview.domain.com

That’s still a lot of certificates to purchase and manage. A multi-domain wildcard SSL certificate allows you to purchase a single SSL certificate, and add the above 7 sites as SANs (subject alternative names) to the SSL certificate. This allows you to save a lot of money and hassle by purchasing and installing a single SSL certificate.

Bottom line: If you have multiple levels of subdomains, a multi-domain wildcard SSL certificate is your best option!

----------

Choose Multi-Domain Wildcard SSL Certificate If You Want to...

Secure your website using impenetrable 256-bit symmetric encryption strength

Secure up to 250 fully qualified domain names

Secure unlimited sub-domains

Have unlimited server licenses

Save money, time and efforts

Streamline your SSL management

Authenticate your site using domain or organization validation

----------

SAN (Subject Alternative Names) is the previous keyword i found:

to hv

*.youtube.com

supported in

*.google.com ssl

----------

this round i found:

Multi-Domain (SAN/UCC) SSL certificates

is the one with SAN supported

They’re also called Unified Communications SSL certificates

----------

https://github.com/billson-my/ssl/blob/main/openssl-google.com_443-trace-ssl-detail.txt

Finding: CSRF required to be included in both cookie and header

 


Found out need to have CSRF token in cookies + header

C:\Users\billson.bs.chew>curl "http://localhost:9099/sfa/getrefcountry" -X "POST" -H "Cookie: JSESSIONID=ECF471E0BB423ADF808EFC649965D63D; XSRF-TOKEN=8078038f-017c-4adf-9034-71d0a5624020; OAuth_Token_Request_State=45f11140-bc27-4d82-9e06-ac7716150d9b"

{"timestamp":"2023-01-12T05:14:04.958+00:00","status":403,"error":"Forbidden","message":"Forbidden","path":"/sfa/getrefcountry"}

C:\Users\billson.bs.chew>

C:\Users\billson.bs.chew>

C:\Users\billson.bs.chew>

C:\Users\billson.bs.chew>

C:\Users\billson.bs.chew>curl "http://localhost:9099/sfa/getrefcountry" -X "POST" -H "Cookie: JSESSIONID=ECF471E0BB423ADF808EFC649965D63D; OAuth_Token_Request_State=45f11140-bc27-4d82-9e06-ac7716150d9b" -H "X-XSRF-TOKEN: 8078038f-017c-4adf-9034-71d0a5624020"

{"timestamp":"2023-01-12T05:14:17.134+00:00","status":403,"error":"Forbidden","message":"Forbidden","path":"/sfa/getrefcountry"}

C:\Users\billson.bs.chew>

C:\Users\billson.bs.chew>

C:\Users\billson.bs.chew>

C:\Users\billson.bs.chew>curl "http://localhost:9099/sfa/getrefcountry" -X "POST" -H "Cookie: JSESSIONID=ECF471E0BB423ADF808EFC649965D63D; XSRF-TOKEN=8078038f-017c-4adf-9034-71d0a5624020; OAuth_Token_Request_State=45f11140-bc27-4d82-9e06-ac7716150d9b" -H "X-XSRF-TOKEN: 8078038f-017c-4adf-9034-71d0a5624020"

[{"id":746,"countryName":"......

But will failed after added -H "X-Requested-With: XMLHttpRequest"

curl "http://localhost:9099/sfa/getrefcountry" -X "POST" -H "Cookie: JSESSIONID=72E583341F34F836CE9D1E791BAA8289; XSRF-TOKEN=8078038f-017c-4adf-9034-71d0a5624020; OAuth_Token_Request_State=45f11140-bc27-4d82-9e06-ac7716150d9b" -H "X-XSRF-TOKEN: 8078038f-017c-4adf-9034-71d0a5624020" -H "X-Requested-With: XMLHttpRequest"

maybe required to add the origin header as well.

curl "http://localhost:9099/sfa/getrefcountry" -X "POST" -H "Cookie: JSESSIONID=4174FC81554467718FC1F68CA393A357; XSRF-TOKEN=9c5dd88b-837b-400a-b083-912cc83aaa9f; OAuth_Token_Request_State=45f11140-bc27-4d82-9e06-ac7716150d9b" -H "X-XSRF-TOKEN: 9c5dd88b-837b-400a-b083-912cc83aaa9f" -H "Origin: http://localhost:9099" -H "X-Requested-With: XMLHttpRequest"

Web characters - emoji

 

Emoji 14.0

2021-09-14

Unicode 14.0

E14.0

🌏🗺🧭

🦷
➀➁➂➃➄➅➆➇➈➉

🏀

🎮🕹🎮🕹

🔋

🉑

more at: https://www.w3schools.com/charsets/ref_utf_dingbats.asp




🇲🇾
more at: https://unicode.org/emoji/charts/full-emoji-list.html

Emoji Versions

Emoji Version	Date	Unicode Version	Data File Comment
N/A	various	various	E0.0
N/A	2010-10-11	Unicode 6.0	E0.6
N/A	2014-06-16	Unicode 7.0	E0.7
Emoji 1.0	2015-06-09	Unicode 8.0	E1.0
Emoji 2.0	2015-11-12	Unicode 8.0	E2.0
Emoji 3.0	2016-06-03	Unicode 9.0	E3.0
Emoji 4.0	2016-11-22	Unicode 9.0	E4.0
Emoji 5.0	2017-06-20	Unicode 10.0	E5.0
Emoji 11.0	2018-05-21	Unicode 11.0	E11.0
Emoji 12.0	2019-03-05	Unicode 12.0	E12.0
Emoji 12.1	2019-10-21	Unicode 12.1	E12.1
Emoji 13.0	2020-03-10	Unicode 13.0	E13.0
Emoji 13.1	2020-09-15	Unicode 13.0	E13.1
Emoji 14.0	2021-09-14	Unicode 14.0	E14.0

org.springframework.orm.jpa.JpaSystemException: identifier of an instance was altered to null

my case was exception throw during selection(findAll()) within a loop.

what i did was trace down the instance within the loop, identify where i changed the ID previously and patch accordingly.

Check npm root folder.

 

npm root -g

Did Maven Update, but remove Maven Dependencies from Web Deployment Assembly?

DxOMark Mobile vs Selfie

https://www.dxomark.com/category/smartphone-reviews/

JAR libraries was not in maven repository.

Summary:

1. Added Web App Libraries are to resolve eClipse IDE classes/jars unresolve issue.
2. Assign Web App Libraries to [Native library location] are to resolve run as maven install, cannot find symbol

Details please refer to: https://docs.google.com/document/d/e/2PACX-1vSoqwBcBATEMdIYTzZN5iGRipXyZy7X5TF-4aQ5aUqqXDc05gdPXCUbCRSkJBD3R27OOf5_eNpGaMzj/pub