HTTPS Web UI & API Support
HTTPS should be a an option in for the Web UI.
I personally use a NGINX proxy which gives it https transparently, but it should support it natively as well.
This would cover the https://server/api/ namespace also. External plugins will need to allow the user to configure https as an option, just like port.
This issue doesn't cover HTSP which would should have some form of encryption layer over WAN connections.
Updated by Bernhard Berger about 2 years ago
I have thought about this topic (authentication, https and standardized API) extensively in the past few weeks as I have another project running with a bit of a legacy API and facing similar questions.
But as I am not really the most skilled and qualified C person - what about adding an additional layer that could handle those tasks?
Especially regarding user management and authentication I think there may be room for improvement. But most of those things make my head explode when thinking about doing that in plain C.
However, I am not sure if requiring PHP/a full blown webserver is a practicable solution either.. TVH lives off being pretty 'lightweight'.