This page is not created by, affiliated with, or supported by Slack Technologies, Inc.
2020-06-11
Channels
- # announcements (4)
- # aws (6)
- # babashka (40)
- # beginners (318)
- # biff (4)
- # bootstrapped-cljs (9)
- # calva (19)
- # chlorine-clover (1)
- # cider (3)
- # clj-on-windows (25)
- # cljdoc (8)
- # cljfx (1)
- # cljs-dev (30)
- # cljss (2)
- # clojure (62)
- # clojure-chile (9)
- # clojure-europe (11)
- # clojure-finland (17)
- # clojure-italy (1)
- # clojure-kc (1)
- # clojure-nl (3)
- # clojure-spec (27)
- # clojure-uk (40)
- # clojuremn (1)
- # clojurescript (51)
- # conjure (6)
- # cursive (8)
- # data-science (9)
- # datahike (4)
- # datascript (1)
- # datomic (31)
- # emacs (10)
- # emotion-cljs (1)
- # events (1)
- # figwheel-main (16)
- # find-my-lib (1)
- # fulcro (30)
- # graalvm (3)
- # graphql (12)
- # helix (16)
- # honeysql (5)
- # jobs (1)
- # jobs-discuss (10)
- # juxt (3)
- # kaocha (26)
- # lambdaisland (3)
- # leiningen (15)
- # malli (7)
- # off-topic (100)
- # pathom (8)
- # pedestal (15)
- # protojure (24)
- # re-frame (2)
- # reagent (7)
- # reitit (22)
- # remote-jobs (1)
- # shadow-cljs (140)
- # spacemacs (17)
- # spire (2)
- # tools-deps (23)
- # uix (11)
- # vim (5)
- # xtdb (3)
- # yada (3)
I’ve created a library/tool to make creation of SSL certificates and jks files to support HTTPS better
The idea is to eventually get to the point that you can just enable ssl in a figwheel build and not worry about the config
I’ve only tried it on my mac it would be cool to have folks give it a whirl on their own machine https://github.com/bhauman/certifiable
Please be really cautious about the security of the root CA. That could be used to pwn you.
@dominicm I’m following an established pattern for dev certificate generation and its only supposed to be for localhost etc
2 problems: 1. I think that pattern is really dangerous, I think it's a "pragmatic solution" rather than a safe solution. People aren't talking about that. 2. The root certificate ends up installed on the developer's machine, that isn't restricted to localhost in any way, so if an attacker can get a hold of that root certificate, I can start intercepting your traffic.