当前位置: 首页>>代码示例 >>用法及示例精选 >>正文

Node.js server.setSecureContext()用法及代码示例


server.setSecureContext()是tls模块中Socket类的内置应用程序编程接口,用于替换现有服务器的安全上下文。

用法:

server.setSecureContext(options)

参数:该方法采用tls.createSecureContext()选项参数中的任何可能的属性。

返回值:此方法不返回任何内容。

如何生成私钥和公共证书?



  1. 私钥:打开记事本并复制粘贴以下 key :
    -----BEGIN RSA PRIVATE KEY-----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-----END RSA PRIVATE KEY-----

    将文件另存为private-key.pem

  2. 公开证书:打开记事本并复制粘贴以下 key :
    -----BEGIN CERTIFICATE-----
MIICfzCCAegCCQDxxeXw914Y2DANBgkqhkiG9w0BAQsFADCBgzELMAkGA1UEBhMC
SU4xEzARBgNVBAgMCldlc3RiZW5nYWwxEDAOBgNVBAcMB0tvbGthdGExFDASBgNV
BAoMC1BhbmNvLCBJbmMuMRUwEwYDVQQDDAxSb2hpdCBQcmFzYWQxIDAeBgkqhkiG
9w0BCQEWEXJvZm9mb2ZAZ21haWwuY29tMB4XDTIwMDkwOTA1NTExN1oXDTIwMTAw
OTA1NTExN1owgYMxCzAJBgNVBAYTAklOMRMwEQYDVQQIDApXZXN0YmVuZ2FsMRAw
DgYDVQQHDAdLb2xrYXRhMRQwEgYDVQQKDAtQYW5jbywgSW5jLjEVMBMGA1UEAwwM
Um9oaXQgUHJhc2FkMSAwHgYJKoZIhvcNAQkBFhFyb2ZvZm9mQGdtYWlsLmNvbTCB
nzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEAt/EfcF3FG4TneOBWr4JhOUdyuCXm
Dhy5yO3VKtQfPxr+5d0joCSnn/5vYDNSr1MfedZmqVxrXFoMAdPCd71BNmDmeLVi
QK61WREtASP0ZhQMoUBT+R3Fpdy0jPS0YoT/fBd96CJCmgsQOS8Tq5IKVeB61MyC
kwAQ2Goe0T3sdVkCAwEAATANBgkqhkiG9w0BAQsFAAOBgQATe6ixdAjoV7BSHgRX
bXM2+IZLq8kq3s7ck0EZrRVhsivutcaZwDXRCCinB+OlPedbzXwNZGvVX0nwPYHG
BfiXwdiuZeVJ88ni6Fm6RhoPtu2QF1UExfBvSXuMBgR+evp+e3QadNpGx6Ppl1aC
hWF6W2H9+MAlU7yvtmCQQuZmfQ==
-----END CERTIFICATE-----

    将文件另存为public-cert.pem

范例1: 文件名:index.js

// Node.js program to demonstrate the 
// server.setSecureContext() method 
  
const { Console } = require('console'); 
  
// Server.setSecureContext()  API 
var tls = require('tls'), 
    fs = require('fs'), 
  
// Port and host address for server     
PORT = 1337, 
HOST = '127.0.0.1'; 
   
// Private key and public certificate for access 
var options = { 
  key:fs.readFileSync('private-key.pem'), 
  cert:fs.readFileSync('public-cert.pem'), 
  rejectUnauthorized:false
}; 
  
// Creating and initializing server 
var server = tls.createServer(options, function(socket) { 
  
  // Print the data that we received 
  socket.on("data", function(data) { 
     console.log('\nReceived:%s ', 
     data.toString().replace(/(\n)/gm, "")); 
  }); 
  
  // Replacing secure context with the new one 
  server.setSecureContext(options.cert); 
  console.log("secure replaced sucssesfully"); 
  
  server.close(); 
}); 
  
// Start listening on a specific port and address 
server.listen(PORT, HOST, function() { 
  console.log("I'm listening at %s, "
        + "on port %s", HOST, PORT); 
}); 
  
  
// When an error occurs, show it. 
server.on("error", function(error) { 
  console.error(error); 
}); 
  
  
// Creating and initializing client 
var client = tls.connect(PORT,  
      HOST, options, function() { 
  
  // Check if the authorization worked 
  if (client.authorized) { 
     console.log("Connection authorized "
        + "by a Certificate Authority."); 
  } else { 
     console.log("Connection not authorized:" 
        + client.authorizationError) 
  } 
  
  // Send a friendly message 
  client.write("I am the client sending"
            + " you a message."); 
  client.end(); 
}); 
  
client.on("close", function() { 
  console.log("Connection closed"); 
}); 
  
// When an error occurs, show it. 
client.on("error", function(error) { 
  
  console.error(error); 
  
  // Close the connection after  
  // the error occurred. 
  client.destroy(); 
});

使用以下命令运行index.js文件:

node index.js

输出:

I'm listening at 127.0.0.1, on port 1337
Connection not authorized:DEPTH_ZERO_SELF_SIGNED_CERT
secure replaced sucssesfully

Received:I am the client sending you a message.
Connection closed

范例2: 文件名:index.js

// Node.js program to demonstrate the 
// server.setSecureContext() method 
var tls = require('tls'), 
    fs = require('fs'), 
  
// Port and host address for server     
PORT = 1337, 
HOST = '127.0.0.1'; 
   
//Private key and public certificate for access 
var options = { 
  key:fs.readFileSync('private-key.pem'), 
  cert:fs.readFileSync('public-cert.pem'), 
  rejectUnauthorized:false
}; 
  
// Creating and initializing server 
var server = tls.createServer(options, function(socket) { 
  
  // Print the data that we received 
  socket.on('data', function(data) { 
     console.log('\nReceived:%s ', 
     data.toString().replace(/(\n)/gm, "")); 
  }); 
  
  // Replacing secure context with the new one 
  server.setSecureContext(options.cert); 
  console.log("secure replaced successfully"); 
  
  server.close(); 
}); 
  
// Start listening on a specific port and address 
server.listen(PORT, HOST, function() { 
  console.log("I'm listening at %s, on port %s", HOST, PORT); 
}); 
  
// Creating and initializing client 
var client = tls.connect(PORT, HOST, options, function() { 
  
  // Send a friendly message 
  client.write("I am the client sending you a message."); 
  client.end(); 
});

使用以下命令运行index.js文件:

node index.js

输出:

I'm listening at 127.0.0.1, on port 1337
secure replaced successfully

Received:I am the client sending you a message.

参考:https://nodejs.org/dist/latest-v12.x/docs/api/tls.html#tls_server_setsecurecontext_options




相关用法


注:本文由纯净天空筛选整理自RohitPrasad3大神的英文原创作品 Node.js server.setSecureContext() Method。非经特殊声明,原始代码版权归原作者所有,本译文未经允许或授权,请勿转载或复制。