-
Notifications
You must be signed in to change notification settings - Fork 104
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Need encryption and authentication on websocket of the connecting user #1326
Comments
Talk to the red pandas about their setup |
Questions to be answered before taking on this task:
|
For the authentication, assuming you can edit the headers sent by the initial websocket handshake, is to look for |
@dotfloat what certs would we use? Is the storage server using SSL? |
Nope. We also removed SSL from webviz. Don't need encryption on the intranet. The alternative is to create certs on the fly. We don't do this because it doesn't fly nicely with browsers, which give you full-page scary warnings about not being able to validate the cert. Having an internal SSL key that is in Equinor's internal CA is also not a solution since sharing a private key between users is the same as not having encryption. We'll be able to use SSL/WSS when we're in the ☁️ quite easily and transparently. Not a concern now nor will it be in the future imo. |
No description provided.
The text was updated successfully, but these errors were encountered: