Skip to content

ops: HTTPS/TLS termination for RPC (Caddy/nginx templates) #218

New issue
New issue
Open
Open
ops: HTTPS/TLS termination for RPC (Caddy/nginx templates)#218
Assignees
TheNewAutonomy
@TheNewAutonomy

Description

@TheNewAutonomy
TheNewAutonomy
opened on Feb 14, 2026

Goal

Run RPC over HTTPS for public testnets without changing consensus/P2P.

Scope

  • Recommend TLS termination (Caddy or nginx) in front of the node RPC
  • Provide example configs for:
    • rpc.address = "127.0.0.1" + reverse proxy on :443
    • optional wss:// for service bus/websocket if exposed
  • Document firewall rules + IP allowlisting
  • Include systemd unit examples and restart workflow after upgrades

Acceptance criteria

  • Operator can deploy EU RPC as https://rpc.<domain> with a valid cert
  • Node can run without exposing plain HTTP publicly

Metadata

Metadata

Assignees

Labels

No labels
No labels

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions