I have an app on Heroku and I bought my own certificate, valid for myapp.mydomain.de. I added it to Heroku using their addon, SSL Endpoint.
I have a CNAME record which redirect from myapp.mydomain.de to myapp.herokuapp.com.
However, when I visit my myapp.mydomain.de the certificate is still the one issued by Heroku and not my own.
When i do a heroku certs:info I only see my own certificate.
$ curl -kvI https://myapp.mydomain.de
* Rebuilt URL to: https://myapp.mydomain.de/
* Hostname was NOT found in DNS cache
* Trying 23.23.143.170...
* Connected to myapp.mydomain.de (23.25.144.170) port 443 (#0)
* TLS 1.2 connection using TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
* Server certificate: *.herokuapp.com
* Server certificate: DigiCert SHA2 High Assurance Server CA
* Server certificate: DigiCert High Assurance EV Root CA
> HEAD / HTTP/1.1
> User-Agent: curl/7.37.1
> Host: myapp.mydomain.de
> Accept: */*
$ heroku certs -a myapp
Endpoint Common Name(s) Expires Trusted
------------------------ ------------------------------------------------------------------------------------------------------ -------------------- -------
osaka-2491.herokussl.com m.mydomain.de,myapp.mydomain.de 2017-02-09 23:59 UTC True
$ heroku certs:info --> looks good also
Any idea why ?
P.S. myapp.de is not the real domain, just an example