To protect the integrity of HTTP requests to the REST API, which is especially important when sending sensitive information like customer information or API keys, it’s recommended that an HTTPS compatible web server is set up next to the REST API, which then routes requests to the REST API using reverse proxy. Starcounter 2.3.2, which is the version currently targeted by RESTar, has no native support for HTTPS and SSL, but it’s easy to implement a secure solution using tools already included in Windows Server.

Mopedo has an article on how to create a reverse proxy using Microsoft IIS. All you need is a registered domain and an SSL certificate.

Starcounter also provides the following guides for setting up HTTPS for Starcounter servers: