Sync - reject unknown servers

[mitra42]

The server should reject sync requests for unknown servers

For testing purposes - maybe a flag to allow a promiscuous mode ?

[mitra42]

Dan to do some research ....

[mitra42]

I think this is linked to #119 but its the identity of the calling server needing to get passed through the Https

[danaronson]

@mitra42 and I had another talk about this last night and we decided that we're not sure that there is a business case to do this right now. After much investigation, I believe that when we do this we should do this by:

• Create a CA
• setup our webserver to use the CA optionally, but verify that client certs are signed by the CA
• use the CA to sign client certificates which can be given to servers (or app clients if we want)
• setup the webserver to pass a header if client certificate were passed and valid (ensure header is not spoofable and sent by client)
• reject any sync requests that don't have said environment variable

See https://fardog.io/blog/2017/12/30/client-side-certificate-authentication-with-nginx/ for example of setup and signing.