Just like this post here I’m trying enable ApplePay on my website https://tetherties.com (hosted at WPEngine), with Cloudflare.
Apple specifies the ciphers must be one of these 6: https://developer.apple.com/documentation/apple_pay_on_the_web/setting_up_your_server
Cipher suite value
Comparing that list above to the Cloudflare supported cipher list, I’m not seeing any overlap.
Do I need to upgrade from a free plan to a paid plan to enable ApplePay?
Testing my free plan website, CF simply doesn’t provision an RSA certificate for it anymore (only an ECDSA certificate). ECDSA is arguably more secure than RSA and should work fine with Apple Pay.
I highly recommend testing apple pay’s “sandbox mode” without changing anything at Cloudflare to see how well it works using elliptic curve instead of RSA.
Thanks @Judge. Unfortunately, as far as I can tell, there’s no access to their sandbox until they verify your domain by confirming the cipher, which is a bit of a catch22.
Has anyone else solved this issue by upgrading to the Pro plan?
This topic was automatically closed after 30 days. New replies are no longer allowed.