I’m looking to change the port for the OpenHAB Cloud Connector from its default 8080 to HTTPS 8444. I’d like to ensure that the setup is secure and works seamlessly with this new port.
Here’s what I’m planning to do:
Update the OpenHAB configuration to use HTTPS and listen on port 8444.
Test the new setup to confirm that everything is working correctly.
I’d appreciate any guidance, examples, or best practices from those who have already made similar changes. Are there specific settings or pitfalls I should be aware of during this process?
I’m also not sure what using https between the cloud connector and OH buys you. Not only is the connection between the two already not leaving the local host (a network sniffer would be unable to see the traffic), it’s the same process communicating with itself. The network traffic between OH and the cloud server is already encrypted. So using HTTPS here is only going to protect the network traffic from users already on the host. If the attacker is already on the host you’ve got bigger problems and anything that can be accomplished by sniffing and intercepting the traffic between the cloud connector and OH can be accomplished in many other ways (looking at the logs, Karaf console, dropping a file in $OH_CONFIG, etc.).
Finally, I’m not sure the cloud connector is coded to work with HTTPS. HTTP and HTTPS are not interchangeable. Unless the cloud connector add-on is specifically written to support HTTPS it’s not going to work.