Overview

chat-server is our main software product which acts as relay server for all connected HighSide clients.

IMPORTANT: chat-server uses it's own protocol to relay messages and this communication can be encrypted with TLS (using HTTPS to communicate servera and clients). chat-server does not understand HTTPS protocol communications though and hence the requirement of having TLS traffic offload at the LB level.

In our Helm charts example we share the way of setting up an AWS Classic Load Balancer with TLS offload and Proxy Protocol feature enabled for chat-server service using annotations. If you don't use AWS you will need to use the chat-ssl-proxy deployment to manage this or use your own solution to make sure TCP traffic from the client reaches the chat-server pod unencrypted with HTTPS.

NOTE: this has nothing to do with HighSide's encryption protocol described here: https://blog.highside.io/the-411-on-highsides-encryption-and-how-it-works/