Apple Pay for web ciphers

maciej1 · June 19, 2019, 5:01pm

I’m trying to set up Apple Pay for web for a website behind Cloudflare. According to the Apple docs the TLS on the server has to support one of the cipher suits they recognise (Setting Up Your Server | Apple Developer Documentation). The docs I’ve found on Cloudflare unfortunately don’t support any of those (Cipher suites · Cloudflare SSL/TLS docs). Indeed when I try to verify the website with Apple it complains that the cipher suits aren’t right.

Is there a way around it somehow, or do I have to move the website away from Cloudflare?

cloonan · June 20, 2019, 4:17pm

Hi @maciej1, are you still having issues? On our free plan we issue one certificate that requires the client browser to support SNI (Server Name indication). On our Pro plan we issue 3 certificates for your domain and client browsers do not need to support SNI. This makes our pro plan more compatible with a wider range of clients.

Based on https://support.cloudflare.com/hc/en-us/articles/200933580-What-cipher-suites-does-Cloudflare-use-for-SSL-, there’s overlap with the ciphers apple needs, Apple Pay on the Web | Apple Developer Documentation and the ones we provide for customers on the pro plan.

system · July 19, 2019, 5:01pm

This topic was automatically closed after 30 days. New replies are no longer allowed.

Topic		Replies	Views
ApplePay and Cloudflare with Wordpress/Woocommerce Security	3	2677	August 31, 2019
ApplePay domain verification cipher suites Security	2	3475	February 18, 2021
Apple Pay failed to verify domain when the Cloudflare's proxy is turned on DNS & Network	7	6090	December 4, 2020
Cipher Suites Getting Started dash-ssl-tls	2	3067	March 1, 2019
Ssllabs reports my site works only in browsers with SNI support? Security	6	11239	September 29, 2019

Apple Pay for web ciphers

Related topics