堆栈内存溢出
  简体   繁体   English

NodeJs Express:Amazon EC2 Ubuntu中来自HTTPS的Listeining

[英]NodeJs Express: Listeining from HTTPS in Amazon EC2 Ubuntu

 原文  2017-10-21 13:15:42       node.js/ express/ amazon-ec2/ https

问题描述

We are using a combination of Apache Server and NodeJs (Express) for a website. 我们将Apache Server和NodeJ(Express)组合用于网站。 Without SSL, the Apache used to listen to port 80 and Nodejs to port 8080. 如果没有SSL,Apache会先监听端口80,而Nodejs会监听端口8080。

Now, I am installing SSL on the website. 现在,我正在网站上安装SSL。 The Apache is set to listen to port 443. I tried to make the Nodejs listen to port 8443, 3333 etc. - setting the AWS Security Group as "Custom TCP" for the port. Apache设置为侦听端口443。我试图使Node.js侦听端口8443、3333等。-将AWS Security Group设置为该端口的“ Custom TCP”。 The problem is I am not getting any response from the Nodejs server.My hunch is that the problem is with the EC2 security group setting but cannot really put a finger on the exact issue. 问题是我没有从Node.js服务器获得任何响应。我的直觉是,问题出在EC2安全组设置上,但实际上并不能真正解决这个问题。

The server is created for Nodejs as following : 该服务器是为Node.js创建的,如下所示: 

var https = require('https');
var fs = require('fs');
...
...
var https_options = {
        ca: fs.readFileSync ("/path/to/cabundle.ca-bundle", "utf8"),
        key: fs.readFileSync("/path/to/sslkey.key", "utf8"),
        cert: fs.readFileSync("/path/to/certificate.crt", "utf8")
};


var app = express();
var server = https.createServer(https_options, app);
....
....
server.listen(8443 or 3333);

Starting the Server does not cause any error. 启动服务器不会引起任何错误。 Browser,from where I am calling the Nodejs server, does not show any error. 我在其中调用Nodejs服务器的浏览器未显示任何错误。

Any insight is appreciated. 任何见解均表示赞赏。

After Arif pointed out that this can be solved by Apache settings, I am adding the Virtualhost seetings at 在Arif指出可以通过Apache设置解决此问题之后,我在

/etc/apache2/sites-enabled/000-default.conf /etc/apache2/sites-enabled/000-default.conf 

<VirtualHost *:80>
        ServerAdmin webmaster@localhost
        ServerName www.example.com

        Redirect permanent / https://www.example.com

        ErrorLog ${APACHE_LOG_DIR}/error.log
        CustomLog ${APACHE_LOG_DIR}/access.log combined

</VirtualHost>

<VirtualHost *:443>
        ServerAdmin webmaster@localhost
        DocumentRoot /var/www/html/mysite
        Servername www.example.com

        SSLEngine on
        SSLCertificateKeyFile /path/to/sslkey.key
        SSLCertificateFile /path/to/certificate.crt
        SSLCertificateChainFile /path/to/cabundle.ca-bundle


        <Directory /var/www/html/mysite>
                AllowOverride All
                Options FollowSymlinks
        </Directory>
</Virtualhost>

The client side requests are sent to https://www.example.com:8443 客户端请求发送到https://www.example.com:8443

2 个解决方案

解决方案1
 0  2017-10-21 14:16:17

First of all you need to enable ssl and reverse proxy apache module by following command 首先,您需要通过以下命令启用ssl和反向代理apache模块 

sudo a2enmod ssl
sudo a2enmod proxy
sudo a2enmod proxy_http
sudo a2enmod proxy_balancer
sudo a2enmod lbmethod_byrequests

and then update apache ssl config( /etc/apache2/sites-available/default-ssl.conf ) file bellow 然后更新以下的apache ssl config( /etc/apache2/sites-available/default-ssl.conf )文件 

<IfModule mod_ssl.c>
    <VirtualHost _default_:443>
        ServerAdmin admin@example.com
        ServerName your_domain.com
        ServerAlias www.your_domain.com
        ErrorLog ${APACHE_LOG_DIR}/error.log
        CustomLog ${APACHE_LOG_DIR}/access.log combined
        SSLEngine on
        SSLCertificateFile /path/to/certificate.crt
        SSLCertificateKeyFile /path/to/sslkey.key
        ProxyRequests Off
        ProxyPreserveHost On
        ProxyVia Full
        <Proxy *>
          Require all granted
        </Proxy>
        <Location />
          ProxyPass http://localhost:8443
          ProxyPassReverse http://localhost:8443
       </Location>
    </VirtualHost>
</IfModule>

now add ssl file and restart apache 现在添加ssl文件并重新启动apache 

sudo a2ensite default-ssl.conf
sudo service apache2 restart

Now it should work fine https://your_domain.com 现在,它应该可以正常使用https://your_domain.com

Note: You must open http and https port from AWS console in security group 注意:您必须从安全组中的AWS控制台打开http和https端口

解决方案2
 0  

Sorry for delayed reply. 抱歉,回复延迟。 The problem was the CSP settings which were not allowing HTTPS and WSS traffic. 问题是CSP设置不允许HTTPS和WSS通信。

Also, we needed to add 另外,我们需要添加 

({secure: true})

while creating the client side Socket using socket.io. 使用socket.io创建客户端Socket时。 Now it is working fine. 现在工作正常。 Thank you all for the inputs. 谢谢大家的投入。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 将Amazon EC2 Node.js实例重定向到HTTPS - Redirecting amazon ec2 nodejs instance to HTTPS 如何在部署在 EC2 实例上的 Nodejs Express 服务器中使用 HTTPS? - How to use HTTPS in Nodejs express server Deployed on EC2 instance? 为 nodejs express 应用侦听 EC2 上端口 3000 的 HTTPS 请求 - Listen for HTTPS requests to port 3000 on EC2 for nodejs express app 无法使用Nginx和Node.js Express在Amazon EC2上加载静态文件 - can't load static files on amazon ec2 with nginx and nodejs express NodeJs与EC2上的ubuntu服务器对话 - NodeJs talks to ubuntu server on EC2 Amazon EC2 Ubuntu实例:我应该在哪里上传文件以从浏览器访问它们? - Amazon EC2 Ubuntu instance: Where should I upload the files to access them from the browser? 无法从Amazon EC2 VM上部署的Node.js连接到远程mongodb实例 - Unable to connect to remote mongodb instance from nodejs deployed on Amazon EC2 VM 您如何从本地计算机上的nodejs项目在Amazon EC2实例中运行Shell脚本? - How can you run a shell script in Amazon EC2 Instance from nodejs project in my local machine? 在Amazon EC2上运行简单的HTTPS节点JS服务器 - Running a simple HTTPS Node JS Server on Amazon EC2 如何配置AWS EC2实例中的Node.js以接受来自客户端的HTTPS请求 - How to configure Nodejs that is in AWS EC2 Instance to accept HTTPS request from client side
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM