Gitlab pages domain serving gitlab repositories - wildcard domain support

(redirected from

We have setup gitlab pages (omnibus) according to

With this setup (see below for the gitlab.rb ) gitlab itself (i.e. the repositories) are served both through as well as How do I ensure only serves the gitlab pages and not Gitlab?

Due to the TLS setup, the browser does warn about presenting the wrong certificate (from ), but I feel it shouldn’t forward or listen on this address at all.

gitlab.rb :

external_url ""
pages_external_url ""
gitlab_pages['access_control'] = true
pages_nginx['redirect_http_to_https'] = true
pages_nginx['ssl_certificate'] = "/etc/gitlab/ssl/combined.pem"
pages_nginx['ssl_certificate_key'] = "/etc/ssl/private/pages.key"

Hi, and are two different domains, wildcard support only works for subdomains in this regard. You’ll need to create and sign a SAN certificate for multiple domains. That can be seen with populating the CN in the certificate subject.

Let’s encrypt for example supports that, you’d only need to pass multiple domains with the -d flag. Question is how your certificate is generated/signed.


Thanks for the answer, however I’m a bit confused. is supporting the subdomains and the certificate is valid for e.g.
We have another single domain certificate for
To me this is how things are described in the docs incl. respecting the notion of “Note: You should not use the GitLab domain to serve user pages.”