Force HTTPS for the REST endpoints

raiden-network / raiden

Raiden Network

https://developer.raiden.network

Other

1.84k stars 378 forks source link

Force HTTPS for the REST endpoints #446

Open hackaugusto opened 7 years ago

hackaugusto commented 7 years ago

Problem Definition

Raiden cannot expose the REST endpoints to non-local IPs without encryption.

Solution

Use Flask-SSLify and generate the certificates on the first startup.

Tasklist

[ ] Generate the certificate
[ ] SSLify

Discussion

An alternative is to never expose the Raiden endpoints to external IP addresses or require the user to use a front-end server (e.g. nginx).

adrianbrink commented 7 years ago

I would prefer the solution where the user needs to run nginx, since any real production environment would most likely have the need anyway. However on the other hand it introduces a dependency on nginx (or ideally on a webserver of some sort).

carllin commented 6 years ago

Hi, I would be willing to start on this task if someone would be willing to mentor me through it in return :)

LefterisJP commented 6 years ago

@carllin Sure this is what these issues are for. You can ask any specific questions you need.