Certificate pinning / LetsEncrypt

[kingmatusevich]

I think the SDKs should be updated with the capability to pin our server side certificates (presumably self signed), and thus it verifying the authenticity of the server upon connecting, while making it less of a need for some use cases to go without acquiring a signed certificate, at least during the transition.
Optionally the server could integrate with lets encrypt, that could be a viable alternative.

[gfosco]

Pinning on the client SDKs would be a good feature request to open on those repos, but I'd love to see some possible LetsEncrypt involvement or parallel module for the server.

[kingmatusevich]

Pinning would be very useful for some small deployment / internal cases in which a static IP is used instead of a full-blown domain, I'll open the feature request in the SDKs.

[tatocaster]

LetsEncrypt 👍

[kingmatusevich]

Feature requests in every SDK I could find, let me know If I missed any other:
parse-community/Parse-SDK-iOS-OSX#799, parse-community/Parse-SDK-Android#378, parse-community/parse-php-sdk#218, parse-community/Parse-SDK-dotNET#168, https://github.com/ParsePlatform/parse-cloud-express/issues/15, parse-community/Parse-SDK-Arduino#7

[gfosco]

Going to close this for now.. It would make a nice example project if someone wants to build it.