Better MQTT setup as part of provisioning

Question

Closed this issue a year ago · 1 comments

In line with easier provisioning, allow insecure 1883 which simple sends the setting for secure connect (mqttcert) to get a reconnect.

Yes this opens man in the middle but as the next stage to assign a client cert should only be done from trusted local IP this should be pretty safe.

it allows simple set up from WiFi AP mode without knowing the cert and simple deport to other controller (which does not set a cert).

Answer 1 · 2023-03-28T06:47:57.000Z

Obviously change default factory reset of ESP32 to expect this (as well as allowing AP mode)