mirror of
https://github.com/certd/certd.git
synced 2026-04-19 00:50:53 +08:00
53 lines
1.5 KiB
TypeScript
53 lines
1.5 KiB
TypeScript
|
import https from 'node:https';
|
|||
|
|
import fs from 'fs';
|
|||
|
|
import { Application } from '@midwayjs/koa';
|
|||
|
|
import { createSelfCertificate } from './self-certificate.js';
|
|||
|
|
import { logger } from '@certd/pipeline';
|
|||
|
|
|
|||
|
|
export type HttpsServerOptions = {
|
|||
|
|
enabled: boolean;
|
|||
|
|
app?: Application;
|
|||
|
|
port: number;
|
|||
|
|
key: string;
|
|||
|
|
cert: string;
|
|||
|
|
};
|
|||
|
|
|
|||
|
|
export async function startHttpsServer(opts: HttpsServerOptions) {
|
|||
|
|
// const httpsServer = https.createServer({
|
|||
|
|
// key: fs.readFileSync(path.join(__dirname, '../ssl/2_certd.cn.key')),
|
|||
|
|
// cert
|
|||
|
|
|
|||
|
|
if (!opts.key || !opts.cert) {
|
|||
|
|
logger.error('证书路径未配置,无法启动https服务,请先配置:koa.https.key和koa.https.cert');
|
|||
|
|
return;
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
if (!fs.existsSync(opts.key) || !fs.existsSync(opts.cert)) {
|
|||
|
|
logger.info('证书文件不存在,将生成自签名证书');
|
|||
|
|
createSelfCertificate({
|
|||
|
|
crtPath: opts.cert,
|
|||
|
|
keyPath: opts.key,
|
|||
|
|
});
|
|||
|
|
}
|
|||
|
|
logger.info('准备启动https服务');
|
|||
|
|
const httpServer = https.createServer(
|
|||
|
|
{
|
|||
|
|
cert: fs.readFileSync(opts.cert),
|
|||
|
|
key: fs.readFileSync(opts.key),
|
|||
|
|
},
|
|||
|
|
opts.app.callback()
|
|||
|
|
);
|
|||
|
|
const hostname = '0.0.0.0';
|
|||
|
|
// A function that runs in the context of the http server
|
|||
|
|
// and reports what type of server listens on which port
|
|||
|
|
function listeningReporter() {
|
|||
|
|
// `this` refers to the http server here
|
|||
|
|
logger.info(`Https server is listening on https://${hostname}:${opts.port}`);
|
|||
|
|
}
|
|||
|
|
try {
|
|||
|
|
httpServer.listen(opts.port, hostname, listeningReporter);
|
|||
|
|
} catch (e) {
|
|||
|
|
logger.error('启动https服务失败', e);
|
|||
|
|
}
|
|||
|
|
}
|