Most web browser vendors shared they will be distrusting certificates with a validity that exceeds one year.
To accommodate these changes, OutSystems will be rotating the
outsystemsenterprise.com certificate, starting late September, by issuing a new certificate with no more than a one year validity.
This article addresses questions you may have about the certificate change.
I am using SSL Pinning plugin on my mobile apps. Do I need to do anything?
As long as you are pinning your mobile applications to your own certificate, this operation won't impact your mobile apps.
However, if you are pinning your mobile apps on the
outsystemsenterprise.com certificate, this rotation will cause your applications to stop connecting to the OutSystems cloud environment.
To avoid any downtime, our strong recommendation is to take this opportunity to use your own certificate, for which you have the certificate keys and use your certificate fingerprint on your mobile apps.
As a last resort, add the following fingerprint which represents the certificate that will be installed in late September/early October 2020 to the SSL Pinning component.
Please beware that OutSystems will no longer provide the
outsystemsenterprise.com certificate fingerprint in advance for future certificate changes. For this reason, we highly advise to use your own certificate in production environments.
Note that you should keep the current fingerprint and add the new one so that your app continues to function as expected before and after the certificate renewal. For more information on how to add a new fingerprint to your SSL Pinning component please visit the component official documentation here.
I am using my own domain certificate in my cloud environment. Does this operation have any impact on it?
No. This operation won't impact in any way your certificate.
Does this operation present a risk or threat to the data present on my cloud environments?
No. This operation doesn't present any risk or threat to the data present in your cloud environments.
Do I need to do anything after the new certificate is installed?
If you're using SSL Pinning in mobile apps, please check the recommendations above. Apart from that, no further actions are required from your side.
Can I opt-out from the certificate renewal?
When will the next certificate renewal occur?
As described in this article OutSystems will communicate the rotation whenever possible, however OutSystems reserves the right to rotate the certificate without prior communication or in short notice. Shall you depend on a specific definition of the
outsystemsenterprise.com certificate, it's highly advisable to use your own certificate and remove that dependency.