1

在 Heroku 托管的节点应用程序上,我想在不运行单独的应用程序服务器的情况下将所有 HTTP 流量重定向到 HTTPS。

上一篇文章使用 node.js/express 自动 HTTPS 连接/重定向建议设置 iptables

iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 8080
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 443 -j REDIRECT --to-port 3000

我不是很专家 - 但有谁知道如何在 Heroku 上做到这一点?目标是将 http 路由到 https - 以最有效的方式实现这一目标。

谢谢!

4

1 回答 1

2

我在 Express 中检查 https 并在必要时重定向:(
您使用的是 Express 吗?)

function requireSecure(req, res, next){
  if(!req.secure){
    var port = app.myConfig.httpsPort || 443;
    if(port != 443){
      res.redirect('https://'+req.host+':'+port+req.originalUrl);
      console.log('redirecting to https://'+req.host+':'+port+req.originalUrl);
    } else {
      res.redirect('https://'+req.host+req.originalUrl);
      console.log('redirecting to https://'+req.host+req.originalUrl);
    };   
  } else {
    next();
  };   
}

// place before any other route to ensure all requests https
app.all('*', requireSecure); 

// You can instead protect individual routes like this:
app.get('/account' 
, requireSecure
, function(req, res, next){
  res.send(200, 'This route is definitely secure!')
});

// I THINK (but haven't tested,) that you can also place this 
// function as middleware in Express's stack, above your router 
// (but possibly below the static files handler, if you don't need https for those)
app.configure(function(){
  app.set('views', __dirname + '/views');
  app.set('view options', {layout:false});
  app.set('view engine', 'jade');
  app.use(requireSecure);
  app.use(express.bodyParser());
  app.use(express.methodOverride());
  app.use(app.router);
  app.use(express.static(__dirname + '/public'));
});

// Listen to both http and https protocols:
var http  = require('http');
var https = require('https');
http.createServer(app).listen(80);
https.createServer(options, app).listen(443);
于 2013-07-17T20:52:16.747 回答