Roadmap

Soon

• rewrite the (unpublished) prototype into publishable form
• reach working code
• privilege separation and sandboxing

Later

• reconnect
• sessions survive restart
• TLS without external proxy
• command-line client
• non-interactive sessions

Maybe

• keep terminal state for seamless reconnects

• session sharing

• authenticate from initial server to further one

  • either we can connect directly to final destination, or we can't ("bastion host")
  • can only WebAuthn if browser can connect to final destination

• unattended authentication

  • limit what commands can be run

• switch from hterm to alacritty_terminal in WASM

  This would especially help with keeping terminal state, as we could have the same terminal emulator on both sides, and avoid confusion.