工头,Rails,彪马 SSL/HTTPS
Foreman, Rails, Puma SSL/HTTPS
如何组合这两个命令,以便 Rails 使用 puma 命令中的 -b 选项?
puma: puma -b 'ssl://127.0.0.1:3000?key=/Users/cdrum/.ssh/server.key&cert=/Users/cdrum/.ssh/server.crt' -b 'tcp://127.0.0.1:3001'
rails: bundle exec rails s --binding=127.0.0.1 -p 3000 -e $RAILS_ENV puma
目前我得到这个错误:
puma/binder.rb:272:in `initialize': Address already in use - bind(2) for"127.0.0.1" port 3000 (Errno::EADDRINUSE)
或者,我可以告诉 Rails 寻找已经 运行 的 puma 实例,而不是再次尝试启动它吗?
你实际上可以通过 单独 运行 puma 并将所有配置存储在 config/puma.rb 中来解决这个问题。不同的证书。 management 但不管怎样:
threads_count = ENV.fetch('RAILS_MAX_THREADS') { 5 }
threads threads_count, threads_count
port ENV.fetch('PORT') { 3000 }
environment ENV.fetch('RAILS_ENV') { 'development' }
plugin :tmp_restart
localhost_key = "#{Dir.pwd}/#{File.join('config', 'certs', 'localhost.key')}"
localhost_cert = "#{Dir.pwd}/#{File.join('config', 'certs', 'localhost.crt')}"
unless File.exist?(localhost_key)
def generate_root_cert(root_key) # rubocop:disable Metrics/AbcSize
root_ca = OpenSSL::X509::Certificate.new
root_ca.version = 2
root_ca.serial = 0x0
root_ca.subject = OpenSSL::X509::Name.parse '/C=BE/O=A1/OU=A/CN=localhost'
root_ca.issuer = root_ca.subject
root_ca.public_key = root_key.public_key
root_ca.not_before = Time.now
root_ca.not_after = root_ca.not_before + 2 * 365 * 24 * 60 * 60
root_ca.sign(root_key, OpenSSL::Digest::SHA256.new)
root_ca
end
root_key = OpenSSL::PKey::RSA.new(2048)
file = File.new(localhost_key, 'wb')
file.write(root_key)
file.close
root_cert = generate_root_cert(root_key)
file = File.new(localhost_cert, 'wb')
file.write(root_cert)
file.close
end
ssl_bind '0.0.0.0', '8443', key: localhost_key, cert: localhost_cert
现在 HTTP 和 HTTPS 都适用于我的 Rails 应用。
Procfile 现在只是:
web: puma
您 需要 puma gem 的 special 分支以避免 SSL 错误。
如何组合这两个命令,以便 Rails 使用 puma 命令中的 -b 选项?
puma: puma -b 'ssl://127.0.0.1:3000?key=/Users/cdrum/.ssh/server.key&cert=/Users/cdrum/.ssh/server.crt' -b 'tcp://127.0.0.1:3001'
rails: bundle exec rails s --binding=127.0.0.1 -p 3000 -e $RAILS_ENV puma
目前我得到这个错误:
puma/binder.rb:272:in `initialize': Address already in use - bind(2) for"127.0.0.1" port 3000 (Errno::EADDRINUSE)
或者,我可以告诉 Rails 寻找已经 运行 的 puma 实例,而不是再次尝试启动它吗?
你实际上可以通过 单独 运行 puma 并将所有配置存储在 config/puma.rb 中来解决这个问题。不同的证书。 management 但不管怎样:
threads_count = ENV.fetch('RAILS_MAX_THREADS') { 5 }
threads threads_count, threads_count
port ENV.fetch('PORT') { 3000 }
environment ENV.fetch('RAILS_ENV') { 'development' }
plugin :tmp_restart
localhost_key = "#{Dir.pwd}/#{File.join('config', 'certs', 'localhost.key')}"
localhost_cert = "#{Dir.pwd}/#{File.join('config', 'certs', 'localhost.crt')}"
unless File.exist?(localhost_key)
def generate_root_cert(root_key) # rubocop:disable Metrics/AbcSize
root_ca = OpenSSL::X509::Certificate.new
root_ca.version = 2
root_ca.serial = 0x0
root_ca.subject = OpenSSL::X509::Name.parse '/C=BE/O=A1/OU=A/CN=localhost'
root_ca.issuer = root_ca.subject
root_ca.public_key = root_key.public_key
root_ca.not_before = Time.now
root_ca.not_after = root_ca.not_before + 2 * 365 * 24 * 60 * 60
root_ca.sign(root_key, OpenSSL::Digest::SHA256.new)
root_ca
end
root_key = OpenSSL::PKey::RSA.new(2048)
file = File.new(localhost_key, 'wb')
file.write(root_key)
file.close
root_cert = generate_root_cert(root_key)
file = File.new(localhost_cert, 'wb')
file.write(root_cert)
file.close
end
ssl_bind '0.0.0.0', '8443', key: localhost_key, cert: localhost_cert
现在 HTTP 和 HTTPS 都适用于我的 Rails 应用。
Procfile 现在只是:
web: puma
您 需要 puma gem 的 special 分支以避免 SSL 错误。