nodejs/nodebestpractices
1
0
Fork 0
mirror of https://github.com/goldbergyoni/nodebestpractices.git synced 2025-10-27 10:55:55 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
nodebestpractices/sections/security/secureserver.md
Lewis 807fe9dea8 Slight changes 
Suggested changes from comments
2019-02-22 08:26:25 -08:00

1.0 KiB
Raw Permalink Blame History

Using HTTPS to encrypt the client-server connection



One Paragraph Explainer

Using services such as Let'sEncrypt, a certificate authority which provides free SSL/TLS certificates, can help encrypt the communication of your applications. Node.js frameworks like Express (based on the core https module) support SSL/TLS, which can be implemented in a few lines of code.

You can also configure SSL/TLS on a reverse proxy, such as NGINX or HAProxy.



Code Example Enabling SSL/TLS using the Express framework

const express = require('express');
const https = require('https');
const app = express();
const options = {
    // The path should be changed accordingly to your setup
    cert: fs.readFileSync('./sslcert/fullchain.pem'),
    key: fs.readFileSync('./sslcert/privkey.pem')
};
https.createServer(options, app).listen(443);