HTTPS / TLS

You probably want your server to use HTTPS, so not everyone on the same network can read the sensitive information passed to the proxy server in plaintext.

For a simple explainer, see Julia Evan's Twitter comic about it.

We previously had custom code to retrieve certs, but now use our hosting provider, fly, to generate certs for us. We recommend something similar for folks looking to run their own version of this server. If your hosting provider doesn't provide certs, you can look into using nginx and letsencrypt together as a reverse proxy for this server.