https support with letsencrypt

2016-05-09 12:11:30 -07:00 · 2016-05-09 12:11:30 -07:00 · c3a8f7a86b
--- a/package.json
+++ b/package.json
@ -2,9 +2,9 @@
  "name": "speecher",
  "version": "1.0.0",
  "description": "collect recorded speech samples from users",
-  "repository" : { 
-    "type" : "git",
-    "url" : "https://github.com/mozilla/speecher"
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/mozilla/speecher"
  },
  "main": "speecher.js",
  "scripts": {
@ -14,6 +14,8 @@
  "license": "MPL-2.0",
  "dependencies": {
    "body-parser": "^1.15.0",
-    "express": "^4.13.4"
+    "express": "^4.13.4",
+    "letsencrypt-express": "^1.1.5",
+    "spdy": "^3.3.2"
  }
 }
--- a/server.conf
+++ b/server.conf
@ -0,0 +1,6 @@
+{
+  "letsEncryptHostname":"",
+  "letsEncryptEmailAddress":"",
+  "httpPort":80,
+  "httpsPort":443
+}
--- a/speecher.js
+++ b/speecher.js
@ -1,8 +1,5 @@
 var fs = require('fs');
-var express = require('express');
-var bodyParser = require('body-parser');

-var PORT = 80;                           // What port to listen on
 var uploaddir = __dirname + '/uploads';  // Upload directory
 var directoryToSentence = {};            // dirname to sentence
 var directoryToFileNumber = {};          // dirname to next file number to use
@ -87,6 +84,30 @@ function readConfigFile() {
 }

 function startServer() {
+  // XXX: Remove the .testing() call for production
+  var LEX = require('letsencrypt-express').testing();
+  var http = require('http');
+  var https = require('spdy');
+  var express = require('express');
+  var bodyParser = require('body-parser');
+
+  // Read the server configuration file. It must define
+  // letsEncryptHostname and letsEncryptEmailAddress for the
+  // certificate registration process
+  var config = JSON.parse(fs.readFileSync('server.conf'));
+
+  var lex = LEX.create({
+    configDir: __dirname + '/letsencrypt.conf',
+    approveRegistration: function (hostname, cb) {
+      console.log("approveRegistration:", hostname);
+      cb(null, {
+        domains: [config.letsEncryptHostname],
+        email: config.letsEncryptEmailAddress,
+        agreeTos: true
+      });
+    }
+  });
+
  var app = express();

  // Serve static files in the public/ directory
@ -128,7 +149,16 @@ function startServer() {
    }
  });

-  app.listen(PORT, function () {
-    console.log('Listening on port', PORT);
-  });
+  // Redirect all HTTP requests to HTTPS
+  http.createServer(LEX.createAcmeResponder(lex, function(req, res) {
+    res.setHeader('Location', 'https://' + req.headers.host + req.url);
+    res.statusCode = 302;
+    res.end('<!-- Please use https:// links instead -->');
+  })).listen(config.httpPort || 80);
+
+
+  // Handle HTTPs requests using LEX and the Express app defined above
+  https.createServer(lex.httpsOptions,
+                     LEX.createAcmeResponder(lex, app))
+    .listen(config.httpsPort || 443);
 }