I really like this project, simple UI, the perfect OTA server I was looking for :))
I've added basic http authentication, so that not anybody from the network can access it. I know, it's not perfect security, but at least it's ok for the average user :) If HTTP_USER/PASSWORD is not set in the config file http authentication is not used, it will work as before these modifications.
To answer your question: what I would do, if you really want TLS at home for your devices, would be to front this with either Apache or nginx, or even (for a really simple experience!) with Caddy, which can do TLS out of the box, automatically with Let's Encrypt.
I really like this project, simple UI, the perfect OTA server I was looking for :))
I've added basic http authentication, so that not anybody from the network can access it. I know, it's not perfect security, but at least it's ok for the average user :) If HTTP_USER/PASSWORD is not set in the config file http authentication is not used, it will work as before these modifications.
Also any idea on how to enable HTTPS?