feat: add HTTPS support via INTERCEPT_HTTPS config

Auto-generates a self-signed certificate into data/certs/ when INTERCEPT_HTTPS=true, or accepts custom cert/key paths via INTERCEPT_SSL_CERT and INTERCEPT_SSL_KEY. Resolves 400 errors from browsers sending TLS ClientHello to the plain HTTP server. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-05-01 10:09:59 -07:00 · 2026-02-23 21:26:33 +00:00
parent 367048e853
commit 365333d425
4 changed files with 65 additions and 1 deletions
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -18,6 +18,8 @@ services:
    container_name: intercept
    ports:
      - "5050:5050"
+      # Uncomment for HTTPS support (set INTERCEPT_HTTPS=true below)
+      # - "5443:5443"
    # Privileged mode required for USB SDR device access
    privileged: true
    # USB device mapping for all USB devices
@@ -32,6 +34,9 @@ services:
      - INTERCEPT_HOST=0.0.0.0
      - INTERCEPT_PORT=5050
      - INTERCEPT_LOG_LEVEL=INFO
+      # HTTPS support (auto-generates self-signed cert)
+      # - INTERCEPT_HTTPS=true
+      # - INTERCEPT_PORT=5443
      # ADS-B history is disabled by default
      # To enable, use: docker compose --profile history up -d
      # - INTERCEPT_ADSB_HISTORY_ENABLED=true
@@ -70,6 +75,8 @@ services:
      - adsb_db
    ports:
      - "5050:5050"
+      # Uncomment for HTTPS support (set INTERCEPT_HTTPS=true below)
+      # - "5443:5443"
    # Privileged mode required for USB SDR device access
    privileged: true
    # USB device mapping for all USB devices
@@ -81,6 +88,9 @@ services:
      - INTERCEPT_HOST=0.0.0.0
      - INTERCEPT_PORT=5050
      - INTERCEPT_LOG_LEVEL=INFO
+      # HTTPS support (auto-generates self-signed cert)
+      # - INTERCEPT_HTTPS=true
+      # - INTERCEPT_PORT=5443
      - INTERCEPT_ADSB_HISTORY_ENABLED=true
      - INTERCEPT_ADSB_DB_HOST=adsb_db
      - INTERCEPT_ADSB_DB_PORT=5432