supernets/hardlounge
supernets/hardlounge
4
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Add CA bundle option in SSL

Browse Source
This commit is contained in:
Metsjeesus 2017-04-10 18:49:58 +00:00
parent 8627bbb713
commit fa51a2c281
2 changed files with 18 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
defaults/config.js
View File

@ -287,7 +287,16 @@ module.exports = {
// @example "sslcert/key-cert.pem" // @example "sslcert/key-cert.pem"
// @default "" // @default ""
// //
certificate: "" certificate: "",
//
// Path to the CA bundle.
//
// @type string
// @example "sslcert/bundle.pem"
// @default ""
//
ca: ""
}, },
// //

9
src/server.js
View File

@ -44,6 +44,7 @@ module.exports = function() {
} else { } else {
const keyPath = Helper.expandHome(config.https.key); const keyPath = Helper.expandHome(config.https.key);
const certPath = Helper.expandHome(config.https.certificate); const certPath = Helper.expandHome(config.https.certificate);
const caPath = Helper.expandHome(config.https.ca);
if (!keyPath.length || !fs.existsSync(keyPath)) { if (!keyPath.length || !fs.existsSync(keyPath)) {
log.error("Path to SSL key is invalid. Stopping server..."); log.error("Path to SSL key is invalid. Stopping server...");
@ -55,10 +56,16 @@ module.exports = function() {
process.exit(); process.exit();
} }
if (caPath.length && !fs.existsSync(caPath)) {
log.error("Path to SSL ca bundle is invalid. Stopping server...");
process.exit();
}
server = require("spdy"); server = require("spdy");
server = server.createServer({ server = server.createServer({
key: fs.readFileSync(keyPath), key: fs.readFileSync(keyPath),
cert: fs.readFileSync(certPath) cert: fs.readFileSync(certPath),
ca: caPath ? fs.readFileSync(caPath) : undefined
}, app); }, app);
} }