ApplePay and Cloudflare with Wordpress/Woocommerce

Just like this post here I’m trying enable ApplePay on my website https://tetherties.com (hosted at WPEngine), with Cloudflare.

Apple specifies the ciphers must be one of these 6: https://developer.apple.com/documentation/apple_pay_on_the_web/setting_up_your_server

Cipher suite value

0xC02F:
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

0xC027:
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256

0xC013:
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA

0x009E:
TLS_DHE_RSA_WITH_AES_128_GCM_SHA256

0x0067:
TLS_DHE_RSA_WITH_AES_128_CBC_SHA256

0x009C:
TLS_RSA_WITH_AES_128_GCM_SHA256

0x003C:
TLS_RSA_WITH_AES_128_CBC_SHA256

Comparing that list above to the Cloudflare supported cipher list, I’m not seeing any overlap.

Do I need to upgrade from a free plan to a paid plan to enable ApplePay?

Testing my free plan website, CF simply doesn’t provision an RSA certificate for it anymore (only an ECDSA certificate). ECDSA is arguably more secure than RSA and should work fine with Apple Pay.

I highly recommend testing apple pay’s “sandbox mode” without changing anything at Cloudflare to see how well it works using elliptic curve instead of RSA.

Thanks @Judge. Unfortunately, as far as I can tell, there’s no access to their sandbox until they verify your domain by confirming the cipher, which is a bit of a catch22.

Has anyone else solved this issue by upgrading to the Pro plan?

This topic was automatically closed after 30 days. New replies are no longer allowed.