Certificates
Manage TLS/SSL certificates for HTTPS with SNI (Server Name Indication) support.
Certificate Management
Sail supports dynamic certificate management with automatic selection based on the requested hostname (SNI).
Upload Certificate
{
"id": "example-cert",
"hostnames": [
"api.example.com",
"*.example.com"
],
"certificate": "-----BEGIN CERTIFICATE-----\n...\n-----END CERTIFICATE-----",
"privateKey": "-----BEGIN PRIVATE KEY-----\n...\n-----END PRIVATE KEY-----"
}SNI Support
Server Name Indication (SNI) allows Sail to serve multiple domains with different certificates on the same IP address.
How it works
- 1. Client connects and specifies hostname via SNI
- 2. Sail selects matching certificate based on hostname
- 3. TLS handshake completes with correct certificate
- 4. Secure connection established
Wildcard Certificates
Sail supports wildcard certificates for matching multiple subdomains:
{
"hostnames": [
"*.example.com"
]
}Matches: api.example.com, admin.example.com, etc.
Certificate Renewal
Certificates can be updated through the Web UI or REST API without restarting the gateway. The new certificate takes effect immediately.
Tip: Monitor certificate expiration dates in the Web UI and set up automated renewal using the REST API.