EU cluster - expired SSL certificate error
Incident Report for voucherify
Some apps connected to Voucherify API hosted in the EU region experienced an error saying that our root SSL certificate expired.

Root certificates are self-signed certificates. This means the “Issuer” and ”Subject” are the same. A root certificate becomes a trusted root certificate (or trusted CA, or trust anchor) by virtue of being included by default in the trust store of a piece of software such as a browser or OS.

In our case, Sectigo root certificate expired, and it affected users using some older frameworks like PHP versions earlier than 7.1, or NodeJS older than v10.

We rolled out updated certs that have resolved the issue for affected integrations.

We believe this issue is now resolved. Moreover, to avoid such situations in the future, we have started configuring an automated SSL checker, which will be notifying us in case of any problems in the chain of certificates used by our services.
Posted May 30, 2020 - 12:55 CEST
This incident affected: API, Dashboard, AWS ec2-eu-west-1, AWS s3-eu-west-1, AWS sns-eu-west-1, AWS ec2-us-east-1, Braintree API, and Braintree European Processing.