Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
joesb
on March 6, 2014
|
parent
|
context
|
favorite
| on:
Best practices for API versioning?
Would it be a problem in HTTPS, since you cannot inspect HTTPS headers in the proxy?
schrodinger
on March 6, 2014
|
next
[–]
In the context of a load balancing proxy, you apply the SSL cert to the proxy, and do the encryption there - known as SSL termination. Otherwise like you said, the proxy can't see inside the request (not even the URL).
icebraining
on March 6, 2014
|
prev
[–]
You can't inspect the path either, only the domain, and even that's only if the browser is using SNI.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
