- [x] Research rust libraries to generate own CA - [x] Issue certificates based on CSRs - [x] Implement Proxy to create CSRs - [x] Implement initial handshake with Core that setups certificates in Proxy (if it doesn't already have certificates) - [x] Handle graceful restart of either Core or Proxy - [x] Persist all certificates/keys in Core - [x] Persist all certificates/keys in Proxy - [x] Make sure that when core/proxy restarts after certificate setup, the communication automatically switches to HTTPS and skips the handshaking phase - [x] Error handling in Proxy, consider edge cases - [x] Error handling in Core, consider edge cases - [x] Prepare the feature for a HA environment - [x] Make sure any errors during the setup are propagated to Core Not planned: - [ ] Launch HTTPS with own cert for "aditional" (without reverse-proxy)
Not planned: