Hacker Newsnew | past | comments | ask | show | jobs | submitlogin
Show HN: wghttp – An HTTP server for managing WireGuard devices (github.com/brsyuksel)
5 points by brsyuksel 54 days ago | hide | past | favorite | 2 comments
Unix socket default, opinionated behavior, swagger UI, lightweight server.



Are there any plans to add authentication for the HTTP API when running in TCP mode? It looks like the Unix socket mode relies on system-level permissions (which is great), but TCP mode seems wide open unless wrapped externally (e.g. behind a reverse proxy or firewall).


good question. I'm not planning to add authentication logic that can increase the complexity of the app. the reason behind suggesting to use unix domain socket is that a proxy like caddy can handle authentication & tls for wghttp as you said. I will share a simple caddyfile in readme soon.




Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: