node.js - Using letsencrypt with Node Express application -


i'm trying make switch https application. want use letsencrypt, tutorials i've seen online states requires separate agent setup, renew certificate @ constant intervals. found greenlock-express seems bake renewal process https wrapping of express application, not need setup separate server acting renewal agent (or have misunderstood purpose?).

this have far:

// express import * http 'http'; import * https 'https'; import * e 'express'; const lex = require('greenlock-express');  /** run using myserver.initialize(process.argv) **/ export class myserver {   public app: e.express;   private clientpath = path.join(__dirname, './public');    static initialize(args: string[]): promise<any> {     return new myserver()       .start(args)       .catch((error: any) => console.error(error);   }    constructor() { }    start(args: string[]): promise<https.server> {     // simplified code here, in order display relevant info     return promise.resolve(this.createserver());   }    public createserver(): https.server {     this.app = e(); // creates express application      // setup routes , standard stuff, removed keep question simple      // setup base route else     this.app.get('/*', (req: e.request, res: e.response) => {       res.sendfile(path.resolve(this.clientpath, 'index.html'));     });

now, if return following here, app starts fine , responds http://localhost.

    return this.app.listen(80)       .on('listening', () => console.log(`serving on http://localhost/`));

but if instead try wrap greenlock-express thingy around app (this example given @ https://www.npmjs.com/package/greenlock-express, i'm bit disappointed not work out of box): 

    const lex = lex.create({       server: 'staging',       email: 'my.email@mailprovider.com',       agreetos: true,       configdir: 'cert/',       approvedomains: ['mydomain.org']     });      // force redirect https     http.createserver(lex.middleware(require('redirect-https')())).listen(80, function () {       console.log('listening acme http-01 challenges on', this.address());     });      return <https.server> https.createserver(lex.httpsoptions, lex.middleware(this.app))       .listen(443, () => console.log(`serving on http://localhost/`));   } }

nothing works. redirected http://localhost https://localhost, after that, browser gives , states the site cannot reached.

why? have misunderstood something?

edit

i aware letsencrypt might have issues resolving localhost my domain. have domain application, don't want deploy i'm not 100% sure works. want application runnable , testable localhost. that's thought 

server: 'staging'

part of greenlock-express config for.

yeah, think have. letsencrypt provide free, short-term, verified ssl certificates domains , subdomains (up limit of 10, believe). trying letsencrypt servers make request application @ http://localhost/.well-known/acme-challenge verify own domain. lets encrypt never resolve http://localhost server. need run code , module on server reachable public internet on domain own. letsencrypt able reach app, verify domain, , issue certificate. site run under ssl. that, or have misuderstood something!


Comments

Post a Comment

Popular posts from this blog

networking - Vagrant-provisioned VirtualBox VM is not reachable from Ubuntu host -

this question exact duplicate of: puphpet/vagrant: unable access lamp vm ip address 1 answer i following basic vagrant tutorial , vagrant provisions box on ubuntu without complaining. moreover, can vagrant ssh vm. however, vm not reachable host: it's not possible ping it's ip address. what have achieved: installed virtualbox (5.1.24 r117012 (qt5.5.1)) , vagrant (1.9.7) onto ubuntu (16.04.2 lts) machine. provisioned vm vagrant up , vagrant finishes job , not complain. vagrant ssh works. i have manually installed lighttpd on guest vm , can ping/curl address: localhost within guest vm. this when trying reach guest vm host: ~/tmp/myfirstvagrantproject$ ping 172.22.22.22 ping 172.22.22.22 (172.22.22.22) 56(84) bytes of data. ... icmp_seq=4 destination net unreachable ... 171 packets transmitted, 0 received, +21 errors, 100% packet loss, time 173
Read more

c# - ASP.NET Core - There is already an object named 'AspNetRoles' in the database -

i'm receiving error applicationdbcontext database when trying update entity framework. i've googled, tried fixes here on so, no avail. i'm deleting database each time make change, once deploy, not option. here's error: pm> update-database -context applicationdbcontext system.data.sqlclient.sqlexception: there object named 'aspnetroles' in database. @ system.data.sqlclient.sqlconnection.onerror(sqlexception exception, boolean breakconnection, action 1 wrapcloseinaction) @ system.data.sqlclient.tdsparser.throwexceptionandwarning(tdsparserstateobject stateobj, boolean callerhasconnectionlock, boolean asyncclose) @ system.data.sqlclient.tdsparser.tryrun(runbehavior runbehavior, sqlcommand cmdhandler, sqldatareader datastream, bulkcopysimpleresultset bulkcopyhandler, tdsparserstateobject stateobj, boolean& dataready) @ system.data.sqlclient.sqlcommand.runexecutenonquerytds(string methodname, boolean async, int32 timeout, boolean
Read more

ruby on rails - ArgumentError: Missing host to link to! Please provide the :host parameter, set default_url_options[:host], or set :only_path to true -

i have built module in solidus , ruby on rails , try create tests. i trying create integration tests , have error: e error: prescriptionphotostest#test_/prescription_photos_post_endpoint_throws_an_error_when_wrong_params: argumenterror: missing host link to! please provide :host parameter, set default_url_options[:host], or set :only_path true test/integration/prescription_photos_test.rb:6:in `block in ' i read this , this , doesn't make difference. my code returning error on line: @user = factorygirl.create(:user) here code files. prescription_photos_rest.rb require 'test_helper' class prescriptionphotostest < actiondispatch::integrationtest setup spree::auth::config[:confirmable] = false @user = factorygirl.create(:user) end def authenticated_header token = knock::authtoken.new(payload: { sub: @user.id }).token { 'authorization': "bearer #{token}" } end test '/prescription_p
Read more