UNPKG

@soundworks/core

Version:

Open-source creative coding framework for distributed applications based on Web technologies

soundworks.dev

collective-soundworks/soundworks

128 lines (105 loc) 3.39 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
import http from 'node:http'; import https from 'node:https'; import fs from 'node:fs'; import { X509Certificate, createPrivateKey, } from 'node:crypto'; import pem from 'pem'; import equal from 'fast-deep-equal'; import logger from '../common/logger.js'; /** * @private * @return {HttpServer|HttpsServer} */ export async function createHttpServer(server) { const serverConfig = server.config; if (serverConfig.env.useHttps !== true) { return http.createServer(); } // https is more tricky const httpsInfos = serverConfig.env.httpsInfos; let useSelfSigned = false; if (!httpsInfos || equal(httpsInfos, { cert: null, key: null })) { useSelfSigned = true; } let httpsCertsInfos = null; let httpsServer = null; if (!useSelfSigned) { try { // existence of file is checked in constructor let cert = fs.readFileSync(httpsInfos.cert); let key = fs.readFileSync(httpsInfos.key); let x509 = null; // this fails with self-signed certificates for whatever reason... try { x509 = new X509Certificate(cert); } catch { throw new TypeError(`Cannot create https.Server: Invalid https cert file`); } try { const keyObj = createPrivateKey(key); if (!x509.checkPrivateKey(keyObj)) { throw new TypeError(`Cannot create https.Server: Invalid https key file`); } } catch { throw new TypeError(`Cannot create https.Server: Invalid https key file`); } // check is certificate is still valid const now = Date.now(); const certExpire = Date.parse(x509.validTo); const isValid = now < certExpire; const diff = certExpire - now; const daysRemaining = Math.round(diff / 1000 / 60 / 60 / 24); httpsCertsInfos = { selfSigned: false, CN: x509.subject.split('=')[1], altNames: x509.subjectAltName.split(',').map(e => e.trim().split(':')[1]), validFrom: x509.validFrom, validTo: x509.validTo, isValid: isValid, daysRemaining: daysRemaining, }; httpsServer = https.createServer({ key, cert }); } catch (err) { logger.error(` Invalid certificate files, please check your: - key file: ${httpsInfos.key} - cert file: ${httpsInfos.cert} `); throw err; } } else { // generate self signed certs or reused already existing ones let cert = await server.db.get('httpsCert'); let key = await server.db.get('httpsKey'); if (!cert || !key) { try { const result = await new Promise((resolve, reject) => { pem.createCertificate({ days: 1, selfSigned: true }, async (err, keys) => { if (err) { reject(err); return; } resolve({ cert: keys.certificate, key: keys.serviceKey, }); }); }); cert = result.cert; key = result.key; // store the generated certs to reuse on next start await server.db.set('httpsCert', cert); await server.db.set('httpsKey', key); } catch (err) { logger.error(err.stack); throw err; } } httpsCertsInfos = { selfSigned: true }; httpsServer = https.createServer({ cert, key }); } logger.httpsCertsInfos(httpsCertsInfos); return httpsServer; }