ephimetheus

joined 2 years ago
[–] ephimetheus 5 points 1 year ago (2 children)

What if I feel good about it?

[–] ephimetheus 2 points 1 year ago

Yeah that’s exactly it. This phone was a reaction to the original iPhone. I was there

[–] ephimetheus -1 points 1 year ago (4 children)

It wasn’t an entirely new concept but it completely redefined what it could be. Look up what Android looked like until the iPhone was demoed.

[–] ephimetheus 4 points 1 year ago (2 children)

Any reason for not using SFSafariViewController over the custom UI?

[–] ephimetheus 2 points 1 year ago

I get overheating warnings even when charging via Lightning on the 14 Pro...

[–] ephimetheus 5 points 1 year ago

In my experience it never got amazing battery life, and I'm also lower in battery health than I was on my 12 Pro one year in.

[–] ephimetheus 0 points 1 year ago (4 children)

Can't seem to be able to log in on the old interface.

[–] ephimetheus 2 points 1 year ago* (last edited 1 year ago) (2 children)

Yeah that’s exactly right! You have the proxy listen on 80/443 and use the subdomains to proxy to the respective other services that you have listen to other ports. Make sure those other ports are not open to the outside, though, as that would allow someone to bypass the proxy. In you example, you would change away from 0.0.0.0 to 127.0.0.1, which means the port is only open to the loop back interface, not the other ones. This happens accidentally especially when using docker for the app service. Also you should probably run some firewall to block all ports that you don’t wish to expose.

I’d really suggest you take a look at Caddy for the reverse proxy. It completely handles SSL certificate creation and renewal so you don’t have to do anything.

[–] ephimetheus 4 points 1 year ago (5 children)

One big thing they’re used for is sort of multiplexing port 80/443. You have one daemon listening on them, and you can have multiple domains pointing at the same IP. The reverse proxy will figure out which backend service to forward requests too.

Proxies like Caddy and I think Traefik also automatically manage SSL certificates. In many cases you could have your application server handle SSL, but usually it’s a good idea to have dedicated software for this.