Enable Tailscale's builtin inbound HTTPS proxy

[lmagyar]

Replaces PR #89 #134

Proposed Changes

This is a better solution to the #62 issue than #89 #134 because it doesn't need any manual configuration and also provides a built-in proxy for the https traffic. We don't need to refresh the certificates manually, this is all done by tailscale automatically.

Related Issues

Fixes #62

[github-actions]

There hasn't been any activity on this pull request recently. This pull request has been automatically marked as stale because of that and will be closed if no further activity occurs within 7 days. Thank you for your contributions.

[lmagyar]

not stale

[lmagyar]

I force pushed a rebase onto the lates PR #133, because with tailscale 1.38.1 some script changes are required. So this PR works only after that is merged.

[frenck]

The PR references a lot, but it doesn't describe what it does.

[lmagyar]

I stashed and rebased it.

This is an optional functionality, if the user doesn't configure anything, it works as previously, but emits some info log messages, that it can be configured and used.

If configured, this solves the unsecure connection problem (I know, it's secure, only the browsers have problem with it): downloads and regularly refreshes a tailscale certificate for our tailnet and fires up it's own built-in proxy.

[lmagyar]

I tried to keep this add-on as zero-config as it was, all the configuration is done on the tailscale admin web UI.

[lmagyar]

I've rebased and rewritten as requested.

Also tested manually the proxy startup logic and some corner cases on real devices.

[MelleD]

@lmagyar I'm looking forward to the PR 👍

[MelleD]

@frenck Do you think it's possible to do a (beta) release this week?

I would/could test it over the long Easter weekend :)

[frenck]

@MelleD Not sure, right now, the Home Assistant Core release has my priority this week.

[lmagyar]

Do you think it's possible to do a (beta) release this week?
I would/could test it over the long Easter weekend :)

@MelleD You can test it with installing my forked repo, more test is better: https://github.com/lmagyar/homeassistant-addon-tailscale

[MelleD]

Do you think it's possible to do a (beta) release this week?
I would/could test it over the long Easter weekend :)

@MelleD You can test it with installing my forked repo, more test is better: https://github.com/lmagyar/homeassistant-addon-tailscale

Ok great, I'll try that 👍

[MelleD]

Short feedback:
Works for me and enabled it. Thanks a bunch

[lmagyar]

FYI:

• I've squashed and rebased the PR.
• Added a taildrop like optional bool? configuration option to disable it in case somebody has any issues with it.

The "how to make it customizable" review is still relevant/open.

I also plan to PR the Funnel feature after this PR settled.

[lmagyar]

FYI:

• I've accepted everything you suggested
• I've found another "device" -> "instance" replacement in DOCS.md
• Rebased to the latest main branch

[frenck]

Thanks, @lmagyar 👍

../Frenck