anil.recoil.org
commits
Removed built-in SSL/TLS handling in favor of Caddy reverse proxy:
- Removed certificate manager and ACME dependencies
- Updated server to listen on HTTP (port 8080) instead of HTTPS
- Created comprehensive Caddyfile with Let's Encrypt and mutual TLS
- Updated docker-compose.yml to include Caddy service
- Simplified configuration models and sample configs
- Updated documentation to reflect new architecture
馃 Generated with [Claude Code](https://claude.ai/code)
Co-Authored-By: Claude <noreply@anthropic.com>
- Implement CertificateManager class with ACME client integration
- Add automatic certificate obtaining and renewal functionality
- Support ACME HTTP-01 challenge for domain validation
- Include comprehensive certificate lifecycle management
- Update server configuration to support auto-cert mode
- Replace certbot dependency with direct ACME/josepy libraries
- Add comprehensive tests for certificate management
- Update documentation with automated SSL setup instructions
- Configure gitignore for certificate storage directories
馃 Generated with [Claude Code](https://claude.ai/code)
Co-Authored-By: Claude <noreply@anthropic.com>
- Add hardcoded Netdata CA certificate from official documentation
- Remove client_ca_path configuration parameter
- Update server to use built-in certificate for MTLS validation
- Simplify configuration by eliminating need for external CA file
- Update all documentation and config examples
The Netdata CA certificate is now embedded directly in the code,
eliminating the need for users to configure and manage the CA file
separately. This improves security and simplifies deployment.
馃 Generated with [Claude Code](https://claude.ai/code)
Co-Authored-By: Claude <noreply@anthropic.com>
Removed built-in SSL/TLS handling in favor of Caddy reverse proxy:
- Removed certificate manager and ACME dependencies
- Updated server to listen on HTTP (port 8080) instead of HTTPS
- Created comprehensive Caddyfile with Let's Encrypt and mutual TLS
- Updated docker-compose.yml to include Caddy service
- Simplified configuration models and sample configs
- Updated documentation to reflect new architecture
馃 Generated with [Claude Code](https://claude.ai/code)
Co-Authored-By: Claude <noreply@anthropic.com>
- Implement CertificateManager class with ACME client integration
- Add automatic certificate obtaining and renewal functionality
- Support ACME HTTP-01 challenge for domain validation
- Include comprehensive certificate lifecycle management
- Update server configuration to support auto-cert mode
- Replace certbot dependency with direct ACME/josepy libraries
- Add comprehensive tests for certificate management
- Update documentation with automated SSL setup instructions
- Configure gitignore for certificate storage directories
馃 Generated with [Claude Code](https://claude.ai/code)
Co-Authored-By: Claude <noreply@anthropic.com>
- Add hardcoded Netdata CA certificate from official documentation
- Remove client_ca_path configuration parameter
- Update server to use built-in certificate for MTLS validation
- Simplify configuration by eliminating need for external CA file
- Update all documentation and config examples
The Netdata CA certificate is now embedded directly in the code,
eliminating the need for users to configure and manage the CA file
separately. This improves security and simplifies deployment.
馃 Generated with [Claude Code](https://claude.ai/code)
Co-Authored-By: Claude <noreply@anthropic.com>