Memorial Day Sale: 25% OFF! View Plans
Back to Changelog

v4.5.152

Minor Release Released May 25, 2026

Subdomain SSL Inheritance: subdomains now share the parent domain certificate automatically, including Cloudflare orange-cloud auto-enable

New Features

2
  • New subdomain ssl_mode field (inherited/own): new subdomains default to inherited mode and share the parent domain SSL certificate
  • SubdomainTable now displays an Inherited (parent) info badge for subdomains using the parent domain's SSL certificate (ssl_mode=inherited)

Improvements

8
  • Inherited subdomains skip per-subdomain ACME challenges and renewal — reduces Let's Encrypt rate limit usage and enables Cloudflare Origin Cert (15-year wildcard) to cover all subdomains automatically
  • ssl_reconciler and ssl_expiry_scheduler skip inherited subdomains to avoid redundant cert operations
  • nginx vhost generator reads parent domain cert paths for inherited subdomains
  • Backup snapshot/restore preserves ssl_mode field; old snapshots without ssl_mode restore with own mode (backward compatible)
  • Badge includes tooltip explaining the certificate sharing behavior so users understand why no per-subdomain SSL renewal is shown
  • syncSubdomainToCloudflare() now detects parent cert type via parentCertIsCloudflareOrigin() helper (reads fullchain.pem Subject CN) and sets proxied=true automatically
  • Backward compatible: parent domains using Let's Encrypt or uploaded certificates continue to receive proxied=false (preserves HTTP-01 challenge compatibility)
  • Aligned three subdomain table views to consistent behaviour: standalone Subdomains page, DomainEdit Subdomains tab, and shared SubdomainTable component

Bug Fixes

7
  • Existing subdomains pinned to ssl_mode=own on migration — zero behavior change for currently deployed subdomains
  • Auto-enable Cloudflare proxy (orange cloud) for inherited subdomains when parent domain uses a Cloudflare Origin Certificate
  • Eliminates ERR_CERT_AUTHORITY_INVALID error when browsers connect directly to origin behind Cloudflare — no more manual orange-cloud toggle required
  • Show Inherited (parent) badge on the DomainEdit Subdomains tab for subdomains inheriting parent SSL
  • Show Inherited (parent) badge on the standalone Subdomains page for subdomains inheriting parent SSL
  • Suppress the Let Encrypt renew button when subdomain ssl_mode is inherited (parent renew handles it)
  • Added ssl_mode field to Subdomain TypeScript interface in subdomainService.ts to resolve type drift with subdomain.types.ts

Recent Releases

All Releases
See the Demo