Add some auth to the daemon
One promising approach is to use a JWT. We've already generated an RSA key server-side. We can use it to create a JWT during the server bootstrapping process, and securely pipe it back to the client over SSH for storage in it's config folder. All of this should happen without involving the user.
Add some auth to the daemon
One promising approach is to use a JWT. We've already generated an RSA key server-side. We can use it to create a JWT during the server bootstrapping process, and securely pipe it back to the client over SSH for storage in it's config folder. All of this should happen without involving the user.