Launch option for unencrypted HTTP server

[beeayygee]

Currently, SPT launches with enforced HTTPS. I would like to see a configurable way to use plaintext HTTP. My particular use case is that I'd like to run SPT behind my encrypting proxy, and I'd like to avoid all of the extra configuration of having my proxy interacting with and accepting self-signed backends. I imagine this might also make it easier to debug traffic if inspecting packets.

Since I'm running SPT in a container, my inclination would be to implement this as an environment variable check, so something like looking for $FORCE_HTTP and having this line https://github.com/sp-tarkov/server/blob/master/project/src/servers/HttpServer.ts#L49 conditionally set http/s based on this check.

[DrakiaXYZ]

This isn't something we plan to do. The Tarkov client expects to use HTTPS/WSS, and we no longer patch out this requirement, which means the Tarkov client is not capable of talking over HTTP/WS

[beeayygee]

Thanks for the info! This would still be useful for my usecase since my web proxy hosting SPT would provide a valid certificate and TLS connection for the Tarkov client. I'm not sure if Tarkov uses pinned certificates and the launcher does some trickery with the SPT generated ones to satisfy this, so maybe it still wouldn't work then.

Understand that this may not be generally applicable enough to dedicate time to, but would the project be willing to accept a PR if I contributed one?

[DrakiaXYZ]

That is an interesting use case, not one we generally see or would have accounted for.

If you're willing to work on a PR, you could start by taking a look at the commit where we switched to HTTPS, it should point out most of the areas that would need attention: 1bd00e6

[beeayygee]

Awesome; appreciate the call out there. Will start digging.

[DrakiaXYZ]

Also make sure to target the 3.11.x-dev branch, that's the in-development branch