Fatal编程技术网
  • ruby/
  • Ruby 如何为独立的Sinatra应用程序启用SSL?

Ruby 如何为独立的Sinatra应用程序启用SSL?

ruby ssl

Ruby 如何为独立的Sinatra应用程序启用SSL?,ruby,ssl,sinatra,webrick,Ruby,Ssl,Sinatra,Webrick,我想在Sinatra中编写一个快速服务器应用程序。它必须是自包含的(即不使用apache/nginx/passenger),但也必须支持SSL 是否有一种简单的方法来支持Sinatra的SSL(例如使用WEBRick)?使用JRuby解释器+jetty rackup gem() 在jetty rackup gem中编辑jetty rackup文件并添加SslSocketConnector,一些代码可帮助您: security_connector = Jetty::Security::Ss

我想在Sinatra中编写一个快速服务器应用程序。它必须是自包含的(即不使用apache/nginx/passenger),但也必须支持SSL

是否有一种简单的方法来支持Sinatra的SSL(例如使用WEBRick)?

使用JRuby解释器+jetty rackup gem() 在jetty rackup gem中编辑jetty rackup文件并添加SslSocketConnector,一些代码可帮助您:

    security_connector = Jetty::Security::SslSocketConnector.new
    security_connector.set_acceptors(config[:acceptor_size])
    security_connector.port = config[:port]
    security_connector.confidential_port = config[:port]
    security_connector.keystore = keystore
    security_connector.password = config[:password]
    security_connector.key_password = config[:key_password].nil? ? config[:password] : config[:key_password]
    security_connector.truststore = truststore
    security_connector.trust_password = config[:trust_pasword].nil? ? config[:password] : config[:trust_pasword]
    server.add_connector(security_connector)
示例配置:

# Config
:acceptor_size: 10
:ssl: true
:keystore: keystore.jks
:password: your_pass
# :key_password: your_pass # if different
# :truststore: truststore.jks # if different
# :trust_pasword: your_pass # if different
生成keystore.jks:

要使用MRI ruby执行此操作,请使用以下monkeypatch:

sinatra\u ssl.rb

require 'webrick/https'

module Sinatra
  class Application
    def self.run!
      certificate_content = File.open(ssl_certificate).read
      key_content = File.open(ssl_key).read

      server_options = {
        :Host => bind,
        :Port => port,
        :SSLEnable => true,
        :SSLCertificate => OpenSSL::X509::Certificate.new(certificate_content),
        :SSLPrivateKey => OpenSSL::PKey::RSA.new(key_content)
      }

      Rack::Handler::WEBrick.run self, server_options do |server|
        [:INT, :TERM].each { |sig| trap(sig) { server.stop } }
        server.threaded = settings.threaded if server.respond_to? :threaded=
        set :running, true
      end
    end
  end
end
然后,在独立应用程序中:

app.rb

require 'sinatra'
require 'sinatra_ssl'

set :port, 8443
set :ssl_certificate, "server.crt"
set :ssl_key, "server.key"

get "/" do
  "Hello world!"
end
请确保将
要求的“webrick/https”
以及添加到sinatra_ssl.rb所需的gem列表中。否则效果很好!