TLS
We provide TLS-based security with the HTTP server and we recommend that you use this in production. In order to be compatible with our system, you must use TLS version 1.2 or above.
We also recommend that your internet deployment is behind a reverse proxy for optimum security.
In order to use this, you must enable TLS in the YAML configuration file and supply a TLS server certificate file and corresponding key file, as shown in the following example:
dynamicChainManagers:
httpServer:
transport: httpServer
managerConfig:
port: 443
tls: true
tlsKeyFile: ${PARENT_DIR}/servername.key.pem
tlsCertificateFile: ${PARENT_DIR}/servername.cert.pem