allow http proxy configuration for firmware download #695
Description
I have read a few of the security concerns / discussions here and I am generally in the camp that sais "if someone can get access to my NanoKVMs, there's a hole lot more danger they can do on the connected systems" so I prefer to run them without / with limited internet access.
While I can limit the hosts it can communicate to on the firewall, it would be much better to be able to completely shut off any direct communication.
What the system needs to be able to communicate with the internet for is firmware update (as far as I can see that request is handled by an alibaba host).
This is legitimate but in order to secure against attackers exploiting this connection, I would prefer to have it run via a trusted http proxy.
So this request is to
a) allow for the configuration of a http proxy
- provide a proxy hostname/ ip address field and port field in the UI
- provide a "use http/https proxy" tickmark in the UI
b) make sure the firmware request / download process uses a proxy if configured