First of all: congrats! this really is making it easy.
Would it be a good idea to have a web interface for listing, adding and revoking client certificates?
Probably a quick sinatra or bottle based "single page app" that calls out to the commands would be crazy easy to get going.
A web interface means a web server on the Pi and more vulnerabilities in my opinion because of exploits and more work to get it updated and safe.
Not something in my wheelhouse. But I'm open for someone else to implement.
@guydeke if this ever is implemented it'd be off by default and it'd be a different port the user shouldn't port forward so only avail on their local lan.
Check out #144
Most helpful comment
Not something in my wheelhouse. But I'm open for someone else to implement.
@guydeke if this ever is implemented it'd be off by default and it'd be a different port the user shouldn't port forward so only avail on their local lan.