Node.js 快递vhosts+;https
有没有办法在Express上使用https运行vhosts?我当前的代码(非SSL)如下所示:Node.js 快递vhosts+;https,node.js,express,https,vhosts,express-vhost,Node.js,Express,Https,Vhosts,Express Vhost,有没有办法在Express上使用https运行vhosts?我当前的代码(非SSL)如下所示: var express = require('express'); var vhost = require('vhost'); var path = require('path'); var appOne = express(); var appTwo = express(); var appVhosts = module.exports = express(); appOne.use(expre
var express = require('express');
var vhost = require('vhost');
var path = require('path');
var appOne = express();
var appTwo = express();
var appVhosts = module.exports = express();
appOne.use(express.static(path.join(__dirname, 'pages')));
appTwo.get('/', function(req, res){
res.send('That service isn\'t up right now!')
});
app.use(vhost('siteone.com', appOne));
app.use(vhost('sitetwo.com', appTwo));
appVhosts.listen(80);
但是,据我所知,https模块只接受一个ssl证书。您需要为每个应用定义ssl选项,并按如下方式分配给每个应用:
// (A) read SSL files
var fs = require('fs');
var appOneSSLOps = {
key: fs.readFileSync('./path_to_file/private.key'),
cert: fs.readFileSync('./path_to_file/certificate.crt')
}
var appTwoSSLOps = {
key: fs.readFileSync('./path_to_file/private2.key'),
cert: fs.readFileSync('./path_to_file/certificate2.crt')
}
// (B) assign SSL files to app
var https = require('https');
var appOneServer = https.createServer(appOneSSLOps , appOne).listen(443);
var appTwoServer = https.createServer(appTwoSSLOps , appTwo).listen(80);
// (C) route 80 to 443 - > on your machine route port 80 to 443 either manually or by child_process: I assume you are using linux Ubuntu System
childProcess = require('child_process');
var optionExec = {timeout: 3000}; //option(s) for childProcess.exec
childProcess.exec(
'sudo iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 443',
optionExec,
function(err, stdout, stderr) {
}
);
// (D) then enforce SSL - I assume appOne is the main app.
appOne.use(function(request, response, next) {
if(!request.secure) {
response.redirect('https://' + request.headers.host + request.url);
}
next();
});
注意:我假设appOne是主应用。显然,
https.Server
继承自tls.Server
,它提供了一个名为addContext()
的方法。您可以在那里配置多个证书。我还编写了一个非常小的包,它使用这种方法来实现结果。您可以在那里检查我的实现。这很有效,比端口重新路由容易得多!:D