• in linux with xfce and dark background, the icon is barely visible
  
• the GUI should have an option to close and only appear notification icon
  

HTTP mode header manipulation, such as stripping headers potentially problematic for MitM attacks, is currently hardcoded within the http/https modes. Make each optional header manipulation configurable on both the command line and the config file.

Tasks:

• Identify all the header manipulations which are optional (i.e. not required for the simplistic HTTP/1.x parser to function correct

We need to improve the inline comments for some classes in this library. I tried to add, but I am not sure on the details.

If you get time @honfika would appreciate adding inline comments on the use of certain classes such as CopyStream, CustomBufferedPeekStream etc.

https://github.com/negz/hal5d/blob/937aa88/internal/cert/manager.go#L409

When Kubernetes notifies hal5d about an ingress certificate hal5d should avoid writing the new certificate (and reloading) if the certificate matches one already on the disk. In practice this does not seem to be working; our stats show the same certificates being rewritten and haproxy reloaded every 30 minutes (i.e. the Ku