堆栈内存溢出
  简体   繁体   English

在Node Express应用程序中安装Entrust SSL证书

[英]Install Entrust SSL certificate in Node express application

 原文  2015-10-19 21:05:06       node.js/ ssl/ express

问题描述

I'm not sure how to pass in the given certificates to start the https server. 我不确定如何传递给定的证书来启动https服务器。 Entrust provided the following files: Entrust提供了以下文件:
1. Root certificate. 1.根证书。 (.txt) (。文本)
2. Chain root cert file. 2.链接根证书文件。 (.txt) (。文本)
3. Chain certificate. 3.连锁证书。 (.txt) (。文本)
4. Server certificate. 4.服务器证书。 (.crt) (.CRT)

My express app currently takes: 我的Express应用目前需要: 

exports.key1 = {
    key:'./server/config/keys/server.key', // ?
    cert:'./server/config/keys/server.crt', // ?
    ca:'./server/config/keys/ca.csr' //given to entrust to generate their cert
};

I'm not sure how to modify the key to match the new files. 我不确定如何修改密钥以匹配新文件。

1 个解决方案

解决方案1
 1 已采纳  2015-10-19 21:37:32

Once you've concatenated your certificates, instructions for this are provided by your issuer, you'll need to read them from the file system and provide them to http.createServer() to create a SSL server object. 串联证书后,颁发者将提供有关此证书的说明,您需要从文件系统中读取它们,并将其提供给http.createServer()来创建SSL服务器对象。 From the documentation: 从文档中: 

var https = require('https');
var fs = require('fs');

var options = {
  key: fs.readFileSync('path/to/agent-key.pem'),
  cert: fs.readFileSync('path/to/agent-cert.pem')
};

https.createServer(options, function (req, res) {
  res.writeHead(200);
  res.end("hello world\n");
}).listen(8000);

Usually, you'll wrap the options block in a flag to check whether you are in production or development. 通常,您会将options块包装在标记中,以检查您是在生产还是开发中。 For production, you'll read the certificates from a secure, pre-defined path, whilst for development you can generate these and provide them in a root project folder fixtures/ , which you can also distribute with the project repository if it's more convenient. 对于生产,您将从安全的预定义路径中读取证书,而对于开发,则可以生成这些证书并将其提供到根项目文件夹fixtures/ ,如果方便的话,也可以将其与项目存储库一起分发。 Use the following to create a self-issued certificate for development: 使用以下内容创建自发证书进行开发: 

openssl req -batch \
    -new -x509 -sha256 -newkey rsa:2048 -nodes -days 365 \
        -keyout fixtures/dev.key \
        -out fixtures/dev.crt;

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 如何在Node.js Express应用程序中安装快速SSL证书 - How to install rapid ssl certificate in nodejs express application 在 Express (Node js) 上安装 SSL 证书 - Installing a SSL Certificate on Express (Node js) 如何为Express中运行的应用程序配置SSL证书? - How to configure an SSL certificate for an application that runs in Express? 向快速站点添加SSL证书 - Adding a SSL certificate to an Express Site Node + Express应用程序出现“错误:自签名证书” - 'Error: self signed certificate' with node+express application 在 Express 应用程序中使用 SSL - Using SSL in an Express application 如何在node.js应用程序中正确安装SSL? - How properly install SSL in a node.js application? 在节点服务器上安装SSL证书 - Installing SSL Certificate On Node Server 在 node/express 上安装 RapidSSL 证书 - Installing a RapidSSL certificate on node/express 来自 GoDaddy 的 SSL 证书在 NodeJS 和 express 上不起作用 - SSL certificate from GoDaddy on NodeJS and express not working
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM