1*1c60b9acSAndroid Build Coastguard Worker# lws minimal http server with tls and port 80 redirect 2*1c60b9acSAndroid Build Coastguard Worker 3*1c60b9acSAndroid Build Coastguard Worker## build 4*1c60b9acSAndroid Build Coastguard Worker 5*1c60b9acSAndroid Build Coastguard Worker``` 6*1c60b9acSAndroid Build Coastguard Worker $ cmake . && make 7*1c60b9acSAndroid Build Coastguard Worker``` 8*1c60b9acSAndroid Build Coastguard Worker 9*1c60b9acSAndroid Build Coastguard Worker## usage 10*1c60b9acSAndroid Build Coastguard Worker 11*1c60b9acSAndroid Build Coastguard WorkerBecause this listens on low ports (80 + 443), it must be run as root. 12*1c60b9acSAndroid Build Coastguard Worker 13*1c60b9acSAndroid Build Coastguard Worker``` 14*1c60b9acSAndroid Build Coastguard Worker $ sudo ./lws-minimal-http-server-tls-80 15*1c60b9acSAndroid Build Coastguard Worker[2018/03/20 13:23:13:0131] USER: LWS minimal http server TLS | visit https://localhost:7681 16*1c60b9acSAndroid Build Coastguard Worker[2018/03/20 13:23:13:0142] NOTICE: Creating Vhost 'default' port 7681, 1 protocols, IPv6 off 17*1c60b9acSAndroid Build Coastguard Worker[2018/03/20 13:23:13:0142] NOTICE: Using SSL mode 18*1c60b9acSAndroid Build Coastguard Worker[2018/03/20 13:23:13:0146] NOTICE: SSL ECDH curve 'prime256v1' 19*1c60b9acSAndroid Build Coastguard Worker[2018/03/20 13:23:13:0146] NOTICE: HTTP2 / ALPN enabled 20*1c60b9acSAndroid Build Coastguard Worker[2018/03/20 13:23:13:0195] NOTICE: lws_tls_client_create_vhost_context: doing cert filepath localhost-100y.cert 21*1c60b9acSAndroid Build Coastguard Worker[2018/03/20 13:23:13:0195] NOTICE: Loaded client cert localhost-100y.cert 22*1c60b9acSAndroid Build Coastguard Worker[2018/03/20 13:23:13:0195] NOTICE: lws_tls_client_create_vhost_context: doing private key filepath 23*1c60b9acSAndroid Build Coastguard Worker[2018/03/20 13:23:13:0196] NOTICE: Loaded client cert private key localhost-100y.key 24*1c60b9acSAndroid Build Coastguard Worker[2018/03/20 13:23:13:0196] NOTICE: created client ssl context for default 25*1c60b9acSAndroid Build Coastguard Worker[2018/03/20 13:23:14:0207] NOTICE: vhost default: cert expiry: 730459d 26*1c60b9acSAndroid Build Coastguard Worker``` 27*1c60b9acSAndroid Build Coastguard Worker 28*1c60b9acSAndroid Build Coastguard WorkerVisit http://localhost 29*1c60b9acSAndroid Build Coastguard Worker 30*1c60b9acSAndroid Build Coastguard WorkerThis will go first to port 80 using http, where it will be redirected to 31*1c60b9acSAndroid Build Coastguard Workerhttps and port 443 32*1c60b9acSAndroid Build Coastguard Worker 33*1c60b9acSAndroid Build Coastguard Worker``` 34*1c60b9acSAndroid Build Coastguard Worker07:41:48.596918 IP localhost.http > localhost.52662: Flags [P.], seq 1:100, ack 416, win 350, options [nop,nop,TS val 3906619933 ecr 3906619933], length 99: HTTP: HTTP/1.1 301 Redirect 35*1c60b9acSAndroid Build Coastguard Worker 0x0000: 4500 0097 3f8f 4000 4006 fccf 7f00 0001 E...?.@.@....... 36*1c60b9acSAndroid Build Coastguard Worker 0x0010: 7f00 0001 0050 cdb6 6601 dfa7 922a 4c06 .....P..f....*L. 37*1c60b9acSAndroid Build Coastguard Worker 0x0020: 8018 015e fe8b 0000 0101 080a e8da 4a1d ...^..........J. 38*1c60b9acSAndroid Build Coastguard Worker 0x0030: e8da 4a1d 4854 5450 2f31 2e31 2033 3031 ..J.HTTP/1.1.301 39*1c60b9acSAndroid Build Coastguard Worker 0x0040: 2052 6564 6972 6563 740d 0a6c 6f63 6174 .Redirect..locat 40*1c60b9acSAndroid Build Coastguard Worker 0x0050: 696f 6e3a 2068 7474 7073 3a2f 2f6c 6f63 ion:.https://loc 41*1c60b9acSAndroid Build Coastguard Worker 0x0060: 616c 686f 7374 2f0d 0a63 6f6e 7465 6e74 alhost/..content 42*1c60b9acSAndroid Build Coastguard Worker 0x0070: 2d74 7970 653a 2074 6578 742f 6874 6d6c -type:.text/html 43*1c60b9acSAndroid Build Coastguard Worker 0x0080: 0d0a 636f 6e74 656e 742d 6c65 6e67 7468 ..content-length 44*1c60b9acSAndroid Build Coastguard Worker 0x0090: 3a20 300d 0a0d 0a 45*1c60b9acSAndroid Build Coastguard Worker``` 46*1c60b9acSAndroid Build Coastguard Worker 47*1c60b9acSAndroid Build Coastguard WorkerBecause :443 uses a selfsigned certificate, you will have to make an exception for it in your browser. 48*1c60b9acSAndroid Build Coastguard Worker 49*1c60b9acSAndroid Build Coastguard Worker## Certificate creation 50*1c60b9acSAndroid Build Coastguard Worker 51*1c60b9acSAndroid Build Coastguard WorkerThe selfsigned certs provided were created with 52*1c60b9acSAndroid Build Coastguard Worker 53*1c60b9acSAndroid Build Coastguard Worker``` 54*1c60b9acSAndroid Build Coastguard Workerecho -e "GB\nErewhon\nAll around\nlibwebsockets-test\n\nlocalhost\[email protected]\n" | openssl req -new -newkey rsa:4096 -days 36500 -nodes -x509 -keyout "localhost-100y.key" -out "localhost-100y.cert" 55*1c60b9acSAndroid Build Coastguard Worker``` 56*1c60b9acSAndroid Build Coastguard Worker 57*1c60b9acSAndroid Build Coastguard Workerthey cover "localhost" and last 100 years from 2018-03-20. 58*1c60b9acSAndroid Build Coastguard Worker 59*1c60b9acSAndroid Build Coastguard WorkerYou can replace them with commercial certificates matching your hostname. 60*1c60b9acSAndroid Build Coastguard Worker 61*1c60b9acSAndroid Build Coastguard Worker## HTTP/2 62*1c60b9acSAndroid Build Coastguard Worker 63*1c60b9acSAndroid Build Coastguard WorkerIf you built lws with `-DLWS_WITH_HTTP2=1` at cmake, this simple server is also http/2 capable 64*1c60b9acSAndroid Build Coastguard Workerout of the box. If the index.html was loaded over http/2, it will display an HTTP 2 png. 65