SSL Encryption for the hosted service on Rallly.co

[nprail]

As I said in #29, it would be great if the Rallly.co hosted service had SSL encryption. It's almost expected these days for websites to have SSL and some potential users may not use Rallly because it doesn't have SSL.

This could be a simple and free change. Or it may not be. It depends on where Rallly.co is hosted. Based on a DNS lookup I'm going to guess that it is hosted on a Digital Ocean Droplet using Express directly. That makes SSL easy.

I would recommend using Let's Encrypt. I would also recommend reverse proxying the Express server with Caddy , Apache, or NGINX in a production environment. This improves security and makes SSL easier. I would highly recommend Caddy because SSL is automatic with Let's Encrypt.

[nprail]

Here is an example Caddyfile. This assumes that you are running Rallly on port 3000. Instructions for running Caddy as a daemon are here.

rallly.co {
    tls hello@rallly.co

    errors {
        log ../error.log
    }

    proxy / 127.0.0.1:3000 {

        transparent
    }
}

You may need to setup DNS challenge properly for your configuration. Instructions for that are here.

[nprail]

I see that Rallly.co is now secured with TLS!