Comments (2)
romainwg
commented on July 19, 2024
To address the concern regarding adding HTTPS support for ChatGPT-web, let's consider the specifics of deployment both on internal networks and on the internet.
For Use on Internal Networks
When deploying ChatGPT-web within an internal network (such as a company's intranet), the primary goal is to ensure communications between the server and clients remain encrypted. To achieve this:
-
Generate Self-Signed Certificates: You would need to generate your own security certificates. This typically involves creating a self-signed certificate or obtaining one from your organization's internal Certificate Authority (CA).
-
Browser Security Warnings: It's important to note that browsers generally don't trust self-signed certificates automatically. This will result in security warnings about the certificate being unverified. You can choose to proceed with caution or install the certificate authority's root certificate in your browser to avoid these warnings.
For Deployment on the Internet
Deploying ChatGPT-web over the internet with HTTPS requires a trusted certificate to ensure the security of the connections:
-
Utilize Certbot: A convenient way to obtain a free and trusted certificate is by using Certbot, provided by the Electronic Frontier Foundation (EFF). Certbot automates the process of obtaining certificates from Let's Encrypt, a widely recognized certificate authority.
-
DNS and Port Configuration: Ensure you have a domain name and that DNS is properly configured to point to your server. Additionally, make sure to open the necessary ports (typically port 80 for HTTP and 443 for HTTPS) on your server to allow traffic.
Scope of Request Clarification
While the guidance above aims to assist in deploying ChatGPT-web securely, it's essential to clarify whether your request for HTTPS support pertains to enhancing the project's codebase to facilitate HTTPS configuration or if it's related to deployment advice. Integrating direct HTTPS support into ChatGPT-web or providing a comprehensive guide for HTTPS deployment might extend beyond the immediate scope of this project, focusing on interfacing with the OpenAI ChatGPT API through a web client.
For detailed integration of HTTPS or explicit features, the request might require further community discussion or be considered as an enhancement for future versions. It's beneficial to provide specific details regarding your needs or to contribute suggestions through a pull request.
I hope this outlines a clear path for securing your ChatGPT-web deployment. Please specify if there are additional aspects of the project you believe could be improved or if your request encompasses other security concerns not covered here.
from chatgpt-web.
Niek
commented on July 19, 2024
You can use a simple reverse proxy for this. See: #181
from chatgpt-web.
Related Issues (20)
- How can I enable code-interpreter?
- Issue with chrome browser HOT 1
- Feature Request: Temporary Prompts for Context-Independent Queries
- Why token counts & costs are 40x? HOT 3
- How often do backups save? HOT 1
- Access to GPT4 0125 preview? HOT 1
- Enhancement: Change favicon HOT 4
- Enter button automatically trigger confirmation of the input text. HOT 1
- Is it possible to start a new chat directly from a URL? HOT 2
- It stucks while responding HOT 1
- [Feature Request] Auto-type as you dictate (speech to text)
- Error: TypeError: Failed to fetch when attempting to generate images with DallE-3
- my local history has gone suddenly, is there any way to get it back, and can I prevent this from happening again? HOT 1
- BUG caused by multiple people using the local area network HOT 1
- Plans on supporting Claude? HOT 4
- Why can't save API key? HOT 2
- Add Support for gpt-4-turbo-2024-04-09 HOT 4
- Allow model support of gpt-4-turbo HOT 5
- Errors building mocked_api container HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from chatgpt-web.