Hello- we are running CloudFlare in front of our production marketing website, and had this same error, where it appears that WebFlow’s SSL certs expire after 90 days, and are not automatically renewed via LetsEncrypt.
From what I have been able to read, the current options are:
- Have Cloudflare handle all SSL to the client, and then just HTTP to Webflow by using proxy.webflow.com vs. proxy-ssl.webflow.com as recommended above (Note: this is not acceptable for us from a security perspective)
- When we see an outage, disable CloudFlare SSL proxying temporarily, which triggers a script on the WebFlow end to renew the SSL certificates with LetsEncrypt. (This still incurs periodic outages)
- Disable CloudFlare (not preferred, as CloudFlare has a lot of benefits in addition to WebFlow)
I also can see on the forum that allowing clients to upload our own certificates to Webflow has been a backlog item since at least 2018. This would solve our problem, as we could manage SSL certs through CloudFlare. What is the status for this item?
Any other recommended fixes that provide end-to-end SSL encryption for clients would be appreciated!