Luke Hanley

Hi Matt 👋, In this particular scenario, I was wanting to protect an HTTPS endpoint for shipping logs to. All the nodes will run Caddy (running an app, proxy Prometheus...

Hi @mholt, I appreciate your time. I think I badly explained myself by being too broad with how I would implement this, vs. how I would use it. Story: How...

Roughly thinking about this, the "easy part" is the SAN check on the incoming client side. Config would be something like `tls` -> `client_auth` -> `trusted_names` which is a list...

If error codes are the route taken, avoiding the ["standardzed"](http://tldp.org/LDP/abs/html/exitcodes.html#EXITCODESREF) exit/error codes would probably be a good idea. What's about a status message to stdout (does current verbose log go...

I think PromEx covered most of the points tbh. It's kinda then around wrapping specific things - eg. Mailgun calls, or Spaces Uploads. Stream viewer counts...

A mini service for proxying images is the best route probably? Add protection there to ensure it's only usable via Glimesh (eg. referer checks?). Optionally could optimise images at this...

I did some prototyping of this idea on Cloudflare Workers and I think this is a viable solution. Notes: * Using a separate parent domain here is "safer". It's untrusted...

> I would like that also. Is there any reason why this is not done yet? Probably waiting for a volunteer/contributor to update the [Dockerfile](https://github.com/mittwald/kube-httpcache/blob/2846c1f82c6c698a27338d47332cc82357066ebf/build/package/docker/Dockerfile#L30l). If you raise a PR...