如何为独立的Sinatra应用启用SSL?
我想在Sinatra写一个快速的服务器应用程序。 它必须是自包含的(即不使用apache / nginx / passenger),但也必须支持SSL。
有没有简单的方法为Sinatra启用SSL支持(例如使用WEBRick)?
要使用MRI ruby执行此操作,请使用以下monkeypatch:
sinatra_ssl.rb :
require 'webrick/https' module Sinatra class Application def self.run! certificate_content = File.open(ssl_certificate).read key_content = File.open(ssl_key).read server_options = { :Host => bind, :Port => port, :SSLEnable => true, :SSLCertificate => OpenSSL::X509::Certificate.new(certificate_content), :SSLPrivateKey => OpenSSL::PKey::RSA.new(key_content) } Rack::Handler::WEBrick.run self, server_options do |server| [:INT, :TERM].each { |sig| trap(sig) { server.stop } } server.threaded = settings.threaded if server.respond_to? :threaded= set :running, true end end end end 然后,在您的独立应用程序中:
app.rb
require 'sinatra' require 'sinatra_ssl' set :port, 8443 set :ssl_certificate, "server.crt" set :ssl_key, "server.key" get "/" do "Hello world!" end
使用JRuby interpreter + jetty-rackup gem( http://github.com/geekq/jetty-rackup )在jetty-rackup gem中编辑jetty-rackup文件并添加一个SslSocketConnector,一些代码可以帮助你:
security_connector = Jetty::Security::SslSocketConnector.new security_connector.set_acceptors(config[:acceptor_size]) security_connector.port = config[:port] security_connector.confidential_port = config[:port] security_connector.keystore = keystore security_connector.password = config[:password] security_connector.key_password = config[:key_password].nil? ? config[:password] : config[:key_password] security_connector.truststore = truststore security_connector.trust_password = config[:trust_pasword].nil? ? config[:password] : config[:trust_pasword] server.add_connector(security_connector)
示例配置:
# Config :acceptor_size: 10 :ssl: true :keystore: keystore.jks :password: your_pass # :key_password: your_pass # if different # :truststore: truststore.jks # if different # :trust_pasword: your_pass # if different
生成keystore.jks: http : //docs.codehaus.org/display/JETTY/How+to+configure+SSL