Is the SSL cert Play 2.5.x generate sufficient enough for encrypting HTTP headers for a REST API that has no chance of ever being accessed by a browser? I'd like to avoid purchasing a cert if possible if all I need is encryption of HTTP body / headers. Any suggestions on this? Thanks kindly
Play generate a self-signed certificat, is not suitable for production. If you don't wan't pay $20 for a SSL certificate (namecheap.com) you can try Let's Encrypt, it's free.
--
You received this message because you are subscribed to the Google Groups "Play Framework" group.
To unsubscribe from this group and stop receiving emails from it, send an email to play-framework+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/play-framework/c66a9a3b-5a3c-4413-b308-52d3d00f153c%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.