ssl not activated

[j4b3r]

Hello

i use this setting in my riak-cs advanced.config:
[
{ssl, [
{certfile, "/etc/letsencrypt/live//cert.pem"},
{keyfile, "/etc/letsencrypt/live/*/privkey.pem"},
{cacertfile, "/etc/letsencrypt/live/*****/chain.pem"}
]}
].

after restart riak-cs
ssl not activated
i use default ssl files too but ssl not activated :
[
{ssl, [
{certfile, "/etc/riak-cs/cert.pem"},
{keyfile, "/etc/riak-cs/key.pem"}
]}
].

[Bob-The-Marauder]

Please can you explain in more detail what you mean by "not activated"? How are you testing it?

[recursionbane]

I ran into this as well, and it seems the cacertfile is not optional.
For debug purposes, you can try these insecure settings:

## Measures were added to Riak 1.2 to counteract cross-site scripting and request-forgery attacks. Some reverse proxies cannot remove the Referer header and make serving data directly from Riak impossible. Turning this setting to off disables this security check.
secure_referer_check = off
## If you are using certificate-based authentication, Riak will check the certificate revocation list (CRL) of connecting clients’ certificate by default. To disable this behavior, set the check_crl parameter to off
check_crl = off