I use CloudFlare, but also want to use ACM. Is it possible to use both of these products together?
It is possible to use CloudFlare with Automated Certificate Management. Please follow the procedure below.
Add the custom domain to the app:
$ heroku domains:add www.example.com Adding www.example.com to example-app... done Configure your app's DNS provider to point to the DNS Target whispering-willow-5678.herokudns.com. For help, see https://devcenter.heroku.com/articles/custom-domains
Configure CloudFlare. Add a
CNAME record with the sub domain (
www in this example, use
@ for the root domain) as "Name" and the DNS Target (
whispering-willow-5678.herokudns.com in this example) as the "Domain name".
If you're using HTTPS redirects on Cloudflare, you'll need to disable them temporarily at this point in the process. ACM will not be setup properly if HTTPS redirects are on while the ACM setup is in progress. Once ACM has been setup successfully, you can turn HTTPS redirects back on.
$ heroku certs:auto:enable
After a while, a TLS certificate is generated for your app's custom domains. With SSL Mode "Full (strict)", CloudFlare verifies the domain using the TLS certificate provided with ACM. Client programs accessing the custom domain sees the TLS certificate provided by CloudFlare.