From 315c48673672d0e5c36a44e9fccecf8cc59b13a7 Mon Sep 17 00:00:00 2001
From: Ian Fijolek <ian@iamthefij.com>
Date: Tue, 2 Feb 2021 17:08:09 -0800
Subject: [PATCH] Update cert instructions

---
 README.md | 2 +-
 auth.go   | 2 ++
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 40634fd..7d7d054 100644
--- a/README.md
+++ b/README.md
@@ -8,7 +8,7 @@ Rather than host a web server that you would need to trust, this command runs on
 
 This requires you to have `openssl` installed on your machine and, when the page loads for the first time, it will require you to trust the certificate or ignore the warning.
 
-Here's how to do that on [Firefox](https://support.mozilla.org/en-US/kb/error-codes-secure-websites?as=u&utm_source=inproduct#w_self-signed-certificate). On Chrome, you may have to enable `chrome://flags/#allow-insecure-localhost`.
+Here's how to do that on [Firefox](https://support.mozilla.org/en-US/kb/error-codes-secure-websites?as=u&utm_source=inproduct#w_self-signed-certificate). On Chrome, you may have to enable `chrome://flags/#allow-insecure-localhost`. If you can't get the link to open in Chrome, you can copy the URL into a different browser and try it there. It should work in Firefox or Safari.
 
 ## Setup
 
diff --git a/auth.go b/auth.go
index f12374e..252d014 100644
--- a/auth.go
+++ b/auth.go
@@ -96,6 +96,8 @@ func generateSelfSignedCertificates(certPath, keyPath string) error {
 		"365",
 		"-newkey",
 		"rsa:2048",
+		"-addext",
+		"subjectAltName=DNS:localhost:8888",
 		"-keyout",
 		keyPath,
 		"-out",