TLS in applications
I'd like to set up TLS within my application, I'm using actix-web and want to set up rustls so I can take advantage of http/2, but I need to provide certificates to the actual application in order to do this. I know that railway's load balancer has http/2 but I need to enable it within my app as well.
I can generate the certificates and all, but I'm not sure what I need to set for the X.509 information for it to be valid, using a self signed certificate causes UnknownCA exceptions when the load balancer hits the service.
I'd appreciate any guidance I can get here
7 Replies
Project ID:
d7c966b3-07dd-4a31-9cb9-82de5002e54f
You might find these helpful:
- How can I find SSL creds ?
- Where can I find SSL certificate?
- How to run https server on Railwai.app?
⚠️ experimental feature
d7c966b3-07dd-4a31-9cb9-82de5002e54f
Wouldn't setting up TLS in the app be redundant since it's done by railway, please explain your usecase?
I need my application to support http/2 internally
That requires me to use either tls or openssl within the app itself
The railway load balancer does have http/2, but that's only to the outside. Interally it translates to http/1.1 when it hits it's targets
Http/2 doesn't require encryption, but I'm assuming whatever is making or accepting the requests chooses to only work with encryption?
Correct
The framework I'm using refuses to use h2 without encryption