Affects Version/s: None
Fix Version/s: None
Sprint:Docu Sprint 23, Docu Sprint 24
3 Tasks which are related:
Slightly adapt the page Activation security.
Explain that the security during activation relies on 2 mechanisms:
- Magnolia activation key - this one is already explained on the page
- HTTP / HTTPS handshake - Since activation is actually just a "normal" HTTP(S) request, this also contains the usual HTTP(S) handshake. Using HTTPS increases the security of activation!
Both mechanisms - if misconfigured - can lead to activation errors.
We already have the page Handshake information for activation was incorrect in the Troubleshooting section section. This pages handles an issue due to misconfigured Magnolia activation key (#1 of the above mentioned mechanisms).
However, there can be more activation issues, please see comment from Viet Nguyen. Viets comment describes 2 other issues, both related to SSL (HTTPS):
- subscriber misconfiguration having an URL with wrong protocol while "the rest" is configured in a way that everything should use HTTPS
- SSL misconfiguration
Create a new page "Known activation issues due to misconfiguration" (or something similar), it should list the 2 issues related to SSL as described by Viet plus the issue due to Magnolia activation key misconfiguration described on the page "Handshake information for activation was incorrect".
Links can / should be on these pages:
- * https://documentation.magnolia-cms.com/display/DOCS/Handshake+information+for+activation+was+incorrect
*) The last mentioned page may or may not "survive" if we introduce a new page