Open nycnewman opened 4 years ago
The JSON API does not have any builtin TLS support. It requires that you run it behind some reverse proxy so I think this really only applies to the gRPC API.
There's something to be said for leaving TLS to a dedicated server. I personally trust NGINX to get it right far more than Netty, and it's more configurable too. Why would we not just ask people do use NGINX (or another TCP reverse proxy) to front the GRPC API too?