greenlock-express.js/examples/demo.js

76 lines
2.3 KiB
JavaScript
Raw Permalink Normal View History

2019-06-03 09:47:07 +00:00
"use strict";
2018-05-19 23:27:30 +00:00
// npm install spdy@3.x
//var Greenlock = require('greenlock-express')
2019-06-03 09:47:07 +00:00
var Greenlock = require("../");
2018-05-19 23:27:30 +00:00
var greenlock = Greenlock.create({
2019-06-03 09:47:07 +00:00
// Let's Encrypt v2 is ACME draft 11
version: "draft-11",
2018-05-19 23:27:30 +00:00
2019-06-03 09:47:07 +00:00
server: "https://acme-v02.api.letsencrypt.org/directory",
// Note: If at first you don't succeed, stop and switch to staging
// https://acme-staging-v02.api.letsencrypt.org/directory
2018-05-19 23:27:30 +00:00
2019-06-03 09:47:07 +00:00
// You MUST change this to a valid email address
email: "jon@example.com",
2018-05-19 23:27:30 +00:00
2019-06-03 09:47:07 +00:00
// You MUST NOT build clients that accept the ToS without asking the user
agreeTos: true,
2018-05-19 23:27:30 +00:00
2019-06-03 09:47:07 +00:00
// You MUST change these to valid domains
// NOTE: all domains will validated and listed on the certificate
approvedDomains: ["example.com", "www.example.com"],
2018-05-19 23:27:30 +00:00
2019-06-03 09:47:07 +00:00
// You MUST have access to write to directory where certs are saved
// ex: /home/foouser/acme/etc
configDir: "~/.config/acme/",
2018-05-19 23:27:30 +00:00
2019-06-03 09:47:07 +00:00
// Get notified of important updates and help me make greenlock better
communityMember: true
2018-05-19 23:27:30 +00:00
2019-06-03 09:47:07 +00:00
//, debug: true
2018-05-19 23:27:30 +00:00
});
////////////////////////
// http-01 Challenges //
////////////////////////
// http-01 challenge happens over http/1.1, not http2
2019-06-03 09:47:07 +00:00
var redirectHttps = require("redirect-https")();
var acmeChallengeHandler = greenlock.middleware(function(req, res) {
res.setHeader("Content-Type", "text/html; charset=utf-8");
res.end(
"<h1>Hello, ⚠️ Insecure World!</h1><a>Visit Secure Site</a>" +
'<script>document.querySelector("a").href=window.location.href.replace(/^http/i, "https");</script>'
);
2018-05-19 23:27:30 +00:00
});
2019-06-03 09:47:07 +00:00
require("http")
.createServer(acmeChallengeHandler)
.listen(80, function() {
console.log("Listening for ACME http-01 challenges on", this.address());
});
2018-05-19 23:27:30 +00:00
////////////////////////
// http2 via SPDY h2 //
////////////////////////
// spdy is a drop-in replacement for the https API
var spdyOptions = Object.assign({}, greenlock.tlsOptions);
2019-06-03 09:47:07 +00:00
spdyOptions.spdy = { protocols: ["h2", "http/1.1"], plain: false };
var server = require("spdy").createServer(
spdyOptions,
require("express")().use("/", function(req, res) {
res.setHeader("Content-Type", "text/html; charset=utf-8");
res.end("<h1>Hello, 🔐 Secure World!</h1>");
})
);
server.on("error", function(err) {
console.error(err);
2018-05-19 23:27:30 +00:00
});
2019-06-03 09:47:07 +00:00
server.on("listening", function() {
console.log("Listening for SPDY/http2/https requests on", this.address());
2018-05-19 23:27:30 +00:00
});
server.listen(443);