Incomplete certificate chain. Certificate is not trusted.
Other Information
I gladly found infinityfree.com as a free hoster for my sportsclubs website. I have been at bplaced before, but bplaced doesnt offer any SSL option, so the site was stuck to http only. This causes serious errors when you try to open the site in any browser.
Infinityfree offers free SSL certificates, so I thought it would be a real awesome option to move my website there. I had some troubles in the beginning, but after hours and hours I finally made it to setup the website with most functions working under SSL.
Of course I followed the directions to install the SSL certificate on my wscefree and my wsce (CNAME) domains. I also setup the nameservers and DNS entries correctly. As I mentioned before, after hours and hours it worked - NOT. Because infinityfree.com WOULDNT HAVE TOLD ME, that the free plan DOESNT SUPPORT complete certificate chains, so every fckn browser doesnt trust the VERY AWESOME SLL certificate. So its the same sht having an SSL certificate and beeing stuck to http, because every browser warns every visitor that my site is unsafe, something might be stolen and and and.
COULD YOU PLEASE HAVE TOLD ME BEFORE THAT THE SSL CERTIFICATE IS WORTH NOTHING? SO I COULD HAVE SAFED HOURS AND HOURS OF WORK. I AM REALLY PSSD.
This is my Firfox Browser. But also Chrome and Edge show similar errors when loading the website for the first time. Once u accepted the risk, they open the website without any error, but this is exactly what I dont want, because we have many first time visitors…
Nobody should have to accept invalid certificates to be able to access your website.
But the thing is, as far as I can tell, nobody but you needs that. @KangJL showed that your website was working fine, and it’s also working fine for me using Firefox:
Is your device running an up to date operating system? Older operating systems tend to have more issues with SSL certificates. Especially if it’s something unsupported, like running Windows 7 nowadays.
I also noticed you specifically chose to get certificates from ZeroSSL. But for custom domains, we use Let’s Encrypt by default, which tends to have better browser support. I also see you have obtained Google Trust certificates for both domains. Do you have this same issue with other certificate providers?
Finally, like @KangJL recommended too, you may wish to use Cloudflare on your custom domain. With Cloudflare, Cloudflare takes care of the SSL between your visitors and your website, so any limitations with our SSL implementation are bypassed. It’s probably not the solution you were hoping for, but it will fix the issue you’re having, while still being able to host your website completely for free.
Well thankes a lot for all your efforts and inputs. I am running latest Windows 11 and latest Firefox. At first I installed Google certificates, which caused permanent errors or notices that visitor is at risk. The ZeroSSL works like described above. I will try that Cloudflare thing and really hope my visitors wont have to solve endless picture puzzles
That’s something you can configure at Cloudflare. You can configure your website’s security levels from Under Attack, which shows challenge pages to everyone, to Essentially Off, which means basically nobody will have any interruption accessing your website.
Hmm, yes, that seems to affect things. It does seem to work on Firefox with a clean profile, but not on Chrome.
While that’s indeed not great, most people will not be using clean browser profiles, and most people use Chrome based browsers. Using Let’s Encrypt where possible might be better, because it’s more likely that your browser will have encountered a certificate from the most popular certificate provider in the world.
