Tls is a very important part in casbin-raft, if it's not ok then we'll not be able to use casbin-raft as a cluster, we can only use it in single-node environment.

We should use grpc + tls, I would prefer using native-tls than rustls, because it supports more certificates.

Another question is, do we need to have tls implemented in casbin-raft, can we use other services to do this like nginx? Since I have nerver tried to do this, I have no idea for now

here is an example: https://github.com/hyperium/tonic/blob/master/examples/src/tls/client.rs and https://github.com/GopherJ/cfg/blob/master/cert/gen-cert.sh is a script that I use for tls communication in for example mqtt

Maybe you can check the tls branch, I think this may provide the ability to support tls.

At least one thing that can be confirmed is that we can use the tls support provided by tonic.

@PsiACE Thanks I think it's enough, tonic uses rustls internally