feat: add HTTPS support for proxy server with self-signed certificate generation #155
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
feat: add HTTPS support for proxy server with self-signed certificate generation
Summary
This PR adds HTTPS configuration options to the Torii proxy server, allowing it to serve traffic over TLS with automatically generated self-signed certificates (similar to mkcert functionality). The implementation includes:
--http.https
and--http.cert_path
for HTTPS configurationrcgen
for localhost developmentrustls
for secure connectionsReview & Testing Checklist for Human
proxy.rs:179-182
)--http.https
is not specifiedRecommended Test Plan:
--http.https
flag and verify it serves HTTPS traffic--http.cert_path /path/to/cert.pem
Diagram
Notes
version
field tosnapshot_version
andcert_path
totls_cert_path
to avoid CLI argument conflictsrustls::crypto::aws_lc_rs::default_provider().install_default()
to fix runtime paniccargo check
passes successfully