堆栈内存溢出
  简体   繁体   English

使Apache允许通过HTTPS访问Express API

[英]Getting Apache to allow access to Express API over HTTPS

 原文  2019-07-19 21:18:26       apache/ express/ ssl/ proxy/ port

问题描述

My website ( https://www.tjbrackett.com/contact ), which is on Apache, cannot access my Express app that is on the same server over HTTPS. 我的网站( https://www.tjbrackett.com/contact )位于Apache上,无法通过HTTPS访问位于同一服务器上的Express应用程序。 Before I added an SSL certificate to the site, the setup ran perfectly. 在将SSL证书添加到站点之前,安装程序运行良好。 When I revert the SSL cert, it works again. 当我还原SSL证书时,它再次起作用。 The error I'm receiving on the front-end is ERR_CERT_AUTHORITY_INVALID. 我在前端收到的错误是ERR_CERT_AUTHORITY_INVALID。

I've tried setting up a proxy/reverse proxy. 我尝试设置代理/反向代理。 I'm not sure if I set them up correctly. 我不确定是否设置正确。 I've done a self-signed SSL cert on the Express app. 我已经在Express应用程序上完成了自签名SSL证书。 I've tried to serve the Express app on top of the HTTPS domain. 我试图在HTTPS域的顶部提供Express应用程序。

HTTPS Apache mysite.conf HTTPS Apache mysite.conf 

<IfModule mod_ssl.c>
<VirtualHost *:443>
        ServerName www.tjbrackett.com
        ServerAdmin tj@brackett.dev
        ServerAlias tjbrackett.com
        DirectoryIndex index.html
        DocumentRoot /var/www/tjbrackett.com

        <Directory /var/www/tjbrackett.com>
                    order allow,deny
                    allow from all

                    RewriteEngine on

                    RewriteCond %{REQUEST_FILENAME} -s [OR]
                    RewriteCond %{REQUEST_FILENAME} -l [OR]
                    RewriteCond %{REQUEST_FILENAME} -d
                    RewriteRule ^.*$ - [NC,L]
                    RewriteRule ^(.*) /index.html [NC,L]

        </Directory>

ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined

Include /etc/letsencrypt/options-ssl-apache.conf
SSLCertificateFile /etc/letsencrypt/live/www.tjbrackett.com/fullchain.pem
SSLCertificateKeyFile /etc/letsencrypt/live/www.tjbrackett.com/privkey.pem

ProxyRequests On
ProxyPass /contact https://www.tjbrackett.com:8443/
ProxyPassReverse /contact https://www.tjbrackett.com:8443/

</VirtualHost>

Express app 快递应用 

const nodemailer = require('nodemailer');
const express = require('express');
const bodyParser = require('body-parser');
const fs = require('fs');
const http = require('http');
const https = require('https');
const app = express();

const options = {
    key: fs.readFileSync(__dirname + '/key.pem'),
    cert: fs.readFileSync(__dirname + '/cert.pem')
}
app.use((req, res, next) => {
    res.header('Access-Control-Allow-Origin', "*");
    res.header('Access-Control-Allow-Headers', 'Origin, X-Requested-With, Content-Type, Accept');
    next();
});


app.use(bodyParser.urlencoded({ extended: true }));
app.use(express.json());

app.post('/', (req, res) => {
    let name = req.body.name;
    let email = req.body.email;
    let subject = req.body.subject;
    let message = req.body.message;
    let mailOptions = "";
    console.log(req.body);
    console.log(req.hostname);

    let transporter = nodemailer.createTransport({
        service: 'gmail',
        secure: true,
        auth: {
            user: 'myEmail@bot.com',
            pass: 'jsfoffamlhqzfqnu'
        },
        tls: {
            rejectUnauthorized: false
        }
    });
    if (req.hostname === "www.tjbrackett.com"){
        mailOptions = {
            from: email,
            to: 'myEmail@gmail.com',
            subject: subject,
            text: message + "\nName: " + name + "\nEmail: " + email,
        };
    } else {
        mailOptions = {
            from: email,
            to: 'anotherEmail@gmail.com',
            subject: subject,
            text: message + "\nName: " + name + "\nEmail: " + email,
        }
    }

    transporter.sendMail(mailOptions, (error, info) => {
        if (error) {
            console.log(error);
        } else {
            console.log('Email sent: ' + info.response);
        }
    });

    res.send(req.body);
})

http.createServer(app).listen(8888, () => {
    console.log("Server started on port 8888");
});
https.createServer(options, app).listen(8443, () => {
    console.log("Server started on port 8443");
});

React Fetch 反应获取 

fetch("https://www.tjbrackett.com:8443", {
    method: "POST",
    headers: { "Content-Type": "application/json" },
    body: JSON.stringify({
    name: this.state.name,
    email: this.state.email,
    message: this.state.message
})

I've very new to Apache/web servers so at this point I just don't know enough to research the problem. 我对Apache / Web服务器非常陌生,因此到现在为止我还不了解该问题。 Any suggestions are greatly appreciated. 任何建议,不胜感激。 Thanks! 谢谢!

1 个解决方案

解决方案1
 0 已采纳  2019-07-20 00:32:02

Using the same SSL certificate that's associated with my URL allowed my website to access the Express API. 使用与我的URL关联的相同SSL证书,我的网站可以访问Express API。

New Express code 新的Express代码 

const options = {
    key: fs.readFileSync('/path/to/cert/info/privkey.pem'),
    cert: fs.readFileSync('/path/to/cert/info/cert.pem'),
    ca: fs.readFileSync('/path/to/cert/info/chain.pem')
}

I used Let's Encrypt/Certbot for the SSL. 我使用Let's Encrypt / Certbot作为SSL。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 在Apache中通过https进行文件访问 - File access over https in Apache 如何在同一台服务器上运行 node 和 apache 以允许用户通过 https 访问 api? - How can I run node and apache on the same server to allow the user to access api through https? Apache将Access-Control-Allow-Origin从http设置为https - Apache set Access-Control-Allow-Origin from http to https 如何在Apache中限制单个文件通过HTTPS访问POST请求? - How to limit access to POST request over HTTPS for a single a file in Apache? Apache / Wampserver 允许 https 用于公共 web 服务器 - Apache / Wampserver allow https for public web server 如何在本地主机上允许 Apache 使用 HTTPS? - How do I allow HTTPS for Apache on localhost? apache https 正在重定向到 http - apache https is getting redirect to http 允许访问Apache中的隐藏目录(。) - Allow access to a hidden directory (.) in Apache 使用Apache通过HTTPS / SSL提供gzip资产 - Serving gzip assets over HTTPS/SSL with Apache 将Apache配置为反向代理和基于https的tomcat - Configure Apache as reverse proxy and tomcat over https
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM