Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support HTTPS #5

Open
peterbraden opened this issue Apr 29, 2011 · 3 comments
Open

Support HTTPS #5

peterbraden opened this issue Apr 29, 2011 · 3 comments
Labels
HTTPS

Comments

@peterbraden
Copy link
Contributor

Creating a tracking ticket so I can keep all the research and planning related to this in one place.

Jellyfish currently doesn't support HTTPS, and a good stopgap until we get it working is to just let https traffic pass through. At the moment we seem to be closing https requests with an empty response (Chrome: Error 324 (net::ERR_EMPTY_RESPONSE))

To support HTTPS we need to address:
- Certs. Jellyfish is essentially a man in the middle attack, so we need to self sign each host the proxy deals with and have a mechanism for the browser to accept the cert.

- Adding the https server port to each browser setup vars.
@brianstarke
Copy link

+1

@MarcWeber
Copy link

This issue is a big one - which is why I think it should even be mentioned in the README till HTTPS is supported.
Its the only reason why I'm not even looking at this library at the moment.

@MarcWeber
Copy link

Well - you can still run everything behind a apache/nginx proxy, right? So you can still secure your web application easily..

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
HTTPS
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@MarcWeber @peterbraden @brianstarke