cfml

I'm doing a CFHTTP hit against <https://ims-na1.adobelogin.com>. it worked *one* time, and now gives: I/O Exception: Certificate for &lt;<http://ims-na1.adobelogin.com|ims-na1.adobelogin.com>&gt; doesn't match any of the subject alternative names: [*.<http://ethos02-prod-va6.ethos.adobe.net|ethos02-prod-va6.ethos.adobe.net>]. I know for a fact the certificate is valid. Any idea why CF is refusing to hit it a second time?

if i restart CF, I can again, hit the url one time, and than it reverts

<@U078R1NGK> If you view the cert in your browser, what is the subject common name and SANs on it?

Also, is the initial HTTP request redirecting on the subsequent calls to another domain which is where the error lies?

common name is <http://ims-na1.adobelogin.com|ims-na1.adobelogin.com>

I can hit that URL twice in a row without issues from ACF 2021 on trycf
<https://trycf.com/gist/1ce3f5ccc1545e63f330c63175b9255e/acf2021?theme=monokai>

The error said this
``` doesn't match any of the subject alternative names: [*.<http://ethos02-prod-va6.ethos.adobe.net|ethos02-prod-va6.ethos.adobe.net>].```
which I believe is the exactly that

interesting. so i tried the _full_ url, <https://ims-na1.adobelogin.com/ims/exchange/jwt>, and it worked fine on trycf

I was hoping to see you at Devnexus last week, Ray :slightly_smiling_face:

Dang, I missed the deadline, but all the other Ortus people also weren't accepted this year

Dan Vega was the only CFer I ran into (doing Spring Boot stuff now)

any clue as to why it fails locally, runs on tryucf?

No, but maybe try setting `redirect="false"` as a test to see if there is a redirect to another domain happening somewhere in there

k. is trycf 'safe' to temporarily put in secret info?

I trust Abram in general, but those servers also may be capable of exposing parts of your code to another user

sigh - going to switch to lucee with box server start and see if it helps.