-
Notifications
You must be signed in to change notification settings - Fork 2
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Discovery using QR codes and LetsEncrypt, fixes #3 #5
Conversation
So drawback of this solution that I overlooked is the need for the Bridge to publish a DNS record so that the generated sub-domain used for issuing the certificate resolves to an internal address. Apart from the privacy concern of publishing an internal IP address, DNS propagation time or other DNS issues might be a problem. (especially for internal networks which switch DHCP-assigned addresses frequently) |
Yes! Another option would be to include the IP address in the domain name (like plex do with https://192-168-0-16.deadbeefdeadbeefdeadbeefdeadbeef.plex.direct/), and then either use a wild card cert (not currently supported by LE) or simply register a new cert each time the IP address changes. But then how does the client discover the new URL? They would either have to scan a dynamic QR code each time, or visit some redirecting/iframing URL. |
## QR + plex + LE | ||
* (box will temporarily set up the bridge and update DNS during LE reg/renew) | ||
* con: you need to trust not only the Box and the client, but also the bridge/DNS-server | ||
* pro: no need for Cordova; just use a standard QR-code reader and mobile browser |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
EDIT: No separate QR-code reader needed if we include https://webqr.com/ into the app.
Ah, thought of another option: don't create |
## Flow: | ||
1. At build time, a serial number and a deploy token is put onto the box, so that it can request two services: | ||
* setting up a DNS entry, | ||
* signing a CSR. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I'm sure you just assume this, but as part of this process the box needs to generate an RSA keypair (unique, and never leaves the device)
In this proposal, using the QR code has two advantages:
It also has a big disadvantage compared to #6: the user needs to scan a QR code, enter a serial number, or perform some other type of action to prove that they have physical access to the Box. The concensus within Project Link is that this disadvantage doesn't weigh up to the advantages, so I'll retract this proposal. |
No description provided.