Voucherify experienced a minor incident on May 30, 2020 affecting EU1 - API and EU1 - Dashboard, lasting —. The incident has been resolved; the full update timeline is below.
Affected components
Update timeline
- resolved May 31, 2020, 07:38 AM UTC
Some apps connected to Voucherify API hosted in the EU region experienced an error saying that our root SSL certificate expired. Root certificates are self-signed certificates. This means the “Issuer” and ”Subject” are the same. A root certificate becomes a trusted root certificate (or trusted CA, or trust anchor) by virtue of being included by default in the trust store of a piece of software such as a browser or OS. In our case, Sectigo root certificate expired, and it affected users using some older frameworks like PHP versions earlier than 7.1, or NodeJS older than v10. We rolled out updated certs that have resolved the issue for affected integrations. We believe this issue is now resolved. Moreover, to avoid such situations in the future, we have started configuring an automated SSL checker, which will be notifying us in case of any problems in the chain of certificates used by our services.