UNPKG

hiproxy

Version:

hiproxy - lightweight and powerful proxy tool for front-end developer based on Node.js.

hiproxy.org

hiproxy/hiproxy

79 lines (71 loc) 2.69 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
/** * @file hiproxy server tool * @author zdying */ 'use strict'; var certTool = require('../../../helpers/certTool'); module.exports = { create: function (port, isSSL, rewrite) { return isSSL ? this._createHTTPSServer(port, rewrite) : this._createHTTPServer(port, rewrite); }, _createHTTPServer: function (port, rewrite) { return new Promise(function (resolve, reject) { var server = require('http').createServer().listen(port); server.keepAliveTimeout = 0; server .on('listening', function () { resolve(server); }) .on('error', function (err) { reject(err); }); }); }, _createHTTPSServer: function (port, rewrite) { var fs = require('fs'); var tls = require('tls'); // get default local certificate return certTool.getDomainCertificate('localhost', null, { subjectaltname: 'IP:127.0.0.1,DNS:localhost' }).then(function (defaultCert) { var option = { key: defaultCert.privateKeyPem, cert: defaultCert.certificatePem, SNICallback: function (domain, cb) { var rewriteRules = rewrite.getRule(); var domainRewriteRule = rewriteRules[domain] || []; var certObj = domainRewriteRule.length > 0 && domainRewriteRule[0].variables; if (certObj && certObj.$ssl_certificate_key && certObj.$ssl_certificate) { // 如果配置了证书,使用配置的证书 // TODO 缓存证书内容,避免每次都去读取 cb(null, tls.createSecureContext({ key: fs.readFileSync(certObj.$ssl_certificate_key), cert: fs.readFileSync(certObj.$ssl_certificate) })); log.debug('SNI callback [', domain.bold.green, ']:', JSON.stringify(certObj)); } else { // 如果没有配置证书,自动生成证书 certTool.getDomainCertificate(domain, null).then(function (cert) { cb(null, tls.createSecureContext({ key: cert.privateKeyPem, // fs.readFileSync(defaultCert.key), cert: cert.certificatePem // fs.readFileSync(defaultCert.cert) })); }); log.warn('No keys/certificates for domain requested:', domain.bold.yellow); } } }; return new Promise(function (resolve, reject) { var server = require('https').createServer(option).listen(port); server.keepAliveTimeout = 0; server .on('listening', function () { resolve(server); }) .on('error', function (err) { reject(err); }); }); }); } };