Does tls_insecure_skip_verify only skip verification from Caddy to localhost?

Does tls_insecure_skip_verify when setting up reverse_proxy only disable verification from Caddy to the internal app? Or does it disable it public facing as well?

Thanks!
Ben

EDIT: Nvm, found my answer, it only applies between the reverse proxy and the backend.

Correct, only the connection to the backend/upstream.

Remember though, using this, you’re turning off all security. The connection could be trivially man-in-the-middle’d. The encryption is meaningless without verification, it only adds latency overhead. Might as well just use HTTP, it would be more performant.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.