Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How can you configure Bailador to serve content via TLS (HTTPS)?

Tags:

https

raku

bailador

I have enjoyed experimenting with Bailador for some time now. It is easy to set up and use for plain HTTP requests, but I would like to serve content over HTTPS.

Some of the Request methods seem to hint that HTTPS requests are possible:

method scheme      { $.env<p6w.url-scheme> || 'http' }
method secure      { so self.scheme eq 'https' }

And the headers method:

method headers () {
    return %!headers if %!headers;
    for $.env.keys.grep(rx:i/^[HTTP||CONTENT]/) -> $key {
        my $field = S:i/HTTPS?_// given $key;
        %!headers{$field.uc} = $.env{$key};
    }
    return %!headers;
}

Plus the cookies have force-https related stuff in them as well.

I have scoured for documentation and examples that indicate how/if HTTPS is supported, but with no success yet.

So, can I serve content over HTTPS in Bailador? If so, how?

like image 680
S. Albano Avatar asked Jul 18 '17 23:07

S. Albano

1 Answers

I hate to be "that guy who doesn't answer your question but sends you somewhere else", but I never do SSL in the app. Make Bailador listen to, say, port 5284 on the localhost only. Then set up a reverse proxy in nginx (includes some letsencrypt stuff):

server {
    listen *:443;
    server_name example.com;

    ssl on;
    ssl_certificate     /etc/letsencrypt/certs/example.com/fullchain.pem;
    ssl_certificate_key /etc/letsencrypt/certs/example.com/privkey.pem;

    # Optional: only uncomment once you are sure your SSL works!
    #add_header Strict-Transport-Security "max-age=15768000";

    location /.well-known/acme-challenge/ { alias /var/www/letsencrypt/; }
    location / {
        proxy_pass http://127.0.0.1:5284/;
        proxy_set_header Host $host;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Port 443;
        proxy_set_header X-Forwarded-Host $host;

        # re-write redirects to http as to https
        proxy_redirect http:// https://;
    }
}

For bonus points, redirect all http access to https:

server {
    listen *:80;
    server_name example.com;

    location /.well-known/acme-challenge/ { alias /var/www/letsencrypt/; }
    location / {
        return 301 https://$server_name$request_uri;
    }
}
like image 185
Dean Serenevy Avatar answered Oct 27 '22 23:10

Dean Serenevy
Sign in to Comment

Related questions

Can a Servlet get HTTPS session id?
Secure GWT application with https
HTTPS node app on Cloud Foundry
Can we access WCF service over https using Jquery $.ajax() call in cross domain?
Browser steps when opening HTTPS page
How to disable “Security Warning” window in Webbrowser control
I'd like to create SSL sertificates for my test environment
HTTPS Proxy Implementation (SSLStream)
Camel http4 download file using Basic authentication over Https
HTTPS header issue with Chrome version 44.0.2403.xx
SSLHandshakeException: Received fatal alert: handshake_failure after Java 6 -> 8 upgrade
W3C validator and HTTPS
Cannot use IP in Node.js for self-signed certificate
Is everything encrypted when I use curl -X Post with https?
HTTPS Client for Siemens S7
HTTP SSL with GoDaddy's certificate - This server's certificate chain is incomplete
Node.js https pem error: error:0906D06C:PEM routines:PEM_read_bio:no start line
502 proxy Error [error reading from remote server]
WinRm - Cannot create a WinRM listener on HTTPS due to incorrect SSL certificate
Get HTTPS page content with Lua

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!