I'm a rust noobie, looking for a web framework to write a secure RESTful server,
I read about rocket, actix-web, gotham and so on, but I couldn't find any documentation about the encryptions methods and security these frameworks provide (secure connection like TLS, or any data encryption like AES).
Can anyone explain?
In addition, can anyone explain how can I add additional encryptions to these frameworks? (i.e. TLS + AES via rustls)
The encryption you're going to be using doesn't really depend on which web server library you're using. You have pretty much three options:
Using your system OpenSSL.
Using the Rust implementation in rustls.
Letting a reverse proxy handle it (e.g. nginx).
The above choice determines what encryption options are available, and I'm pretty sure that all three options are available for all popular web frameworks.
+1 to this strategy. I like to containerize and use a CertBot container to enable HTTPS when Nginx starts. Although I think it’s a good time to shop around for Nginx alternatives, its integration with existing tools is nice.
A diversity of ideas and implementations is a good thing. Maybe someone can improve on Nginx or Apache or already has. Developers need to be willing to learn and try new things or we’ll be stuck with monolithic software options. For someone who does not know either, I would suggest the industry standards. For those who are comfortable with the common tooling, I would encourage experimentation and even embracing a little risk in terms of stability.
"On 12 December 2019, it was reported that the Moscow offices of Nginx Inc. had been raided by police, and that Sysoev and Konovalov had been detained. The raid was conducted under a search warrant connected to a copyright claim over Nginx by Rambler—which asserts that it owns all rights to the code because it was written while Sysoev was an employee of the company. On 16 December 2019, Russian state lender Sberbank, which owns 46.5 percent of Rambler, called an extraordinary meeting of Rambler's board of directors asking Rambler's management team to request Russian law enforcement agencies cease pursuit of the criminal case, and begin talks with Nginx and with F5."