arma-server-manager icon indicating copy to clipboard operation
arma-server-manager copied to clipboard
Published 5 months ago verified publisher icon fugasjunior

SSL / HTTPS

Open CubelightCodes opened this issue 2 years ago • 3 comments

Hey there, thanks for this great repository and your active support. I am not a Docker-Expert but according to your Setup-Guide and the Repo's Docker-File it seems that the Webapp will be exposed on Port 8080 without HTTPS, right? If I'm right, please consider adding maybe a Lets Encrypt Certification Mechanism or something to be a feature request, If I'm wrong I'd love some clarification on that. My concern with this as of right now is that even though a Game-Server might not be a classic target for an attack, the consequences might be devastating if a breach happens.

CubelightCodes avatar Mar 08 '23 16:03 CubelightCodes

Hello, and thank you for your feedback!

I agree that when this app is deployed in production, HTTPS should definitely be used. My intention was to provide a simple service that the user will then secure by their own means, e.g. by using a reverse proxy.

Personally, I'm using Nginx reverse proxy that is configured with Certbot to use a Let's Encrypt certificate. However, I'd recommend taking a look at Nginx Proxy Manager project which can be easily integrated into the existing docker-compose.yml file.

Nevertheless, I'll look into any possible options that would allow the app to communicate over HTTPS automatically, or at least provide some instructions in README about setting HTTPS up.

fugasjunior avatar Mar 08 '23 17:03 fugasjunior

That would be awesome. I think many of the people interested in this app are generally people, who maybe rent a VPS or other form of hosting for their Server and look for a convenient way of setting up a UI that helps them manage their servers. I myself have actually not worked too much with the deeper stuff like Reverse Proxies, as I have used win-acme with IIS for most of my SSL concerns, so I am not too sure how to set that up either :/

CubelightCodes avatar Mar 09 '23 12:03 CubelightCodes

I think nginx proxy manager (NPM) is a good recommendation. Maybe the Documentation could be enhanced for a short section how to expose the arma server manager with NPM, as it requires to add the docker container of the arma server manager to the same network as the NPM container. That is too deep docker stuff for many (including myself) to understand. Adding that would be lovely!

CubelightCodes avatar Dec 05 '23 15:12 CubelightCodes