I’m considering hosting a web application on Cloudflare. My mobile app would communicate with the web application.
I would like to configure my mobile app to pin the public keys of the root CAs used by Cloudflare so that I can limit the set of certificates that are trusted. To be clear, I would want to pin the public keys of the root CA for my web app’s edge certificate since that’s the one the mobile app would see.
If I host my application on Cloudflare, will this be possible? Specifically, when the certificates of the CAs expire, will their replacement certificates have the same public keys.
I have searched the Community for this question and only found one post but it doesn’t quite describe what I am trying to accomplish.