Nicely put walkthrough! How do you use it beyond local development? Hardening connections between services internally? (Say web app to Redis). I imagine it's relevant for scenarios where you manage most of the infrastructure yourself. If using cloud-provided services they usually implement TLS connections natively. Curious to know your use cases and ways you tackle certificate upgrades in an automated fashion :)
Cloud provided services are already pointing out into the internet, so really do have to have an externally verifiable certificate. At Fly we globally run vms using Firecracker, so users can construct their application infrastructure which mostly talks to other nodes in the infrastructure wherever they need it. For externally facing sites, Fly automatically does TLS for development sites, and we make it easy to attach custom domain names with TLS.
By using locally generated certificates it's quick to test out that, and then when heading to production either sort out automation (as I said coming soon, along with more cert handling tricks) or get real certificates which have longer life times, but externally validate.
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
Nicely put walkthrough! How do you use it beyond local development? Hardening connections between services internally? (Say web app to Redis). I imagine it's relevant for scenarios where you manage most of the infrastructure yourself. If using cloud-provided services they usually implement TLS connections natively. Curious to know your use cases and ways you tackle certificate upgrades in an automated fashion :)
Cloud provided services are already pointing out into the internet, so really do have to have an externally verifiable certificate. At Fly we globally run vms using Firecracker, so users can construct their application infrastructure which mostly talks to other nodes in the infrastructure wherever they need it. For externally facing sites, Fly automatically does TLS for development sites, and we make it easy to attach custom domain names with TLS.
By using locally generated certificates it's quick to test out that, and then when heading to production either sort out automation (as I said coming soon, along with more cert handling tricks) or get real certificates which have longer life times, but externally validate.