0.24.1 - 2025-09-16
Context
Previously, services forwarded to a local computer were only available over plain HTTP. This could cause issues for web development, such as browser errors when a secure frontend tried to communicate with an insecure local backend service.
Changes in v0.24
This update adds an optional feature for SSL/TLS encryption during local development, which can be turned on in the settings. The first time it is activated, the system will ask for administrator rights. This one-time permission allows the application to set up a local Certificate Authority (CA) and store its key securely, which is needed to create trusted local certificates.
With the feature on, the application creates a single certificate that works for localhost, the local IP address, and all configured service aliases. It also includes a .local version for each alias (like my-api and my-api.local). This certificate is updated automatically if the list of aliases is modified.
With this feature enabled, all aliased services can be reached over HTTPS. The application automatically manages the required system host file entries and redirects plain HTTP traffic to https address. The generated certificates are valid for one year by default, a duration which can be configured in the settings.
Available in kftui and kftray :)
sslkftray.mp4