Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Using SSL Cert for ngrok dev environment

Tags:

ssl-certificate

heroku

google-api

ngrok

I am working to setup my application to watch calendar events through Google's Calendar API. In doing so I must setup a "Push" endpoint on my server that has a valid SSL certificate (not self-signed).

My production environment is running on Heroku so setting up an SSL cert was easy using Expidited SSL. I have two CNames setup in GoDaddy, one for my production application and one for my development environment tunneled through ngrok. I'm using the paid ngrok feature of white labeled domain tunneling (dev.mydomain.com).

Host           Points To

www            saga-1234.herokussl.com
dev            ngrok.com

The problem is that my ssl certificate is recognized when you hit the production application (www.mydomain.com), but it uses ngrok's certificate when you visit the development application (dev.mydomain.com).

enter image description here

How can I setup my ngrok tunnel to use my ssl certificate?

like image 322
Jeff Miller Avatar asked May 25 '14 05:05

Jeff Miller

People also ask

Does Ngrok use https?

ngrok TLS tunnels make no assumptions about the underlying protocol being transported. All examples in this documentation use HTTPS because it is the most common use case, but you can run run any TLS-wrapped protocol over a TLS tunnel (e.g. IMAPS, SMTPS, SIPS, SRTP, etc) without any changes.

1 Answers

Ngrok's white labeled domain does not support HTTPS if you are using your own domain. Simply because it serves it's own certificate, where you need to serve your domain's. That's why you are getting certificate mismatch issue.

Here's what you could do to watch calendar events on your dev machine:

  1. Point ngrok.mydomain.com to another server, let's say a new EC2 micro instance
  2. Point wildcard CNAME to ngrok.mydomain.com
  3. Compile ngrok server and client to use your certificate (rather than ngrok.com)
  4. Run the ngroku-server on EC2 instance
  5. On your dev machine config the client to use ngrok.mydomain.com instead of ngroku.com
  6. Run ngrok -subdomain=dev 80

Your local dev machine's 80 port should be accessible via https://dev.mydomain.com

This is really cool and is very helpful when debugging Google's webhooks, which require valid HTTPS and a verified root domain name.

Another interesting trick is to use CloudFlare's universal SSL to have a valid https://dev-machine.mydomain.com pointing to your dev machine without purchasing a certificate. The steps are exactly the same except that you need to issue your own certificate for ngrok client-server communications and use CloudFlare's Flex SSL for dev-machine.yourdomain.com.

like image 140
Vilius Paulauskas Avatar answered Oct 03 '22 04:10

Vilius Paulauskas
Sign in to Comment

Related questions

How could I debug a node.js App deploy on Heroku?
Heroku : Username for 'https://git.heroku.com': git
Looking at the database on heroku
Memcached on Heroku w/ Django : can't install pylibmc / memcacheify
Heroku deployment - dead pages "We're sorry, but something went wrong."
No web processes running Django in heroku
CSS and Bootstrap not loading in Rails 6 app when deployed to Heroku
Angular2 : X-XSRF-TOKEN is not allowed by Access-Control-Allow-Headers
Heroku logging not working
heroku - rails - Permission denied (publickey)
Sidekiq concurrency and database connections pool
Heroku Scheduler not creating log
How to deploy .gitignored compiled files in Heroku?
How can I find a memory leak on Heroku?
Heroku Rails could not fork new process for connection: Cannot allocate memory
How to prepare for data loss in a production website?
Rails app hosted on heroku: Error R12 (Exit timeout)
Is it possible to host FAYE on Heroku?
Has anyone successfully deployed a GWT app on Heroku?
Facebook API: IP Address blocking of Heroku servers

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!