node js socket io with SSL

Question

I m trying to get socket io running with my SSL certificate however  it will not connect   I based my code off the chat example   var https   require  https    var fs   require  fs           Bootstrap app      var sys   require  sys   require paths unshift   dirname           lib            Module dependencies      var express   require  express       stylus   require  stylus       nib   require  nib       sio   require  socket io            App      var privateKey   fs readFileSync     key   toString    var certificate   fs readFileSync     crt   toString    var ca   fs readFileSync     intermediate crt   toString     var app   express createServer  key privateKey cert certificate ca ca              App configuration                   App routes       app get      function  req  res      res render  index     layout  false                 App listen       app listen 443  function        var addr   app address      console log     app listening on http       addr address         addr port               Socket IO server  single process only       var io   sio listen app  key privateKey cert certificate ca ca          If I remove the SSL code it runs fine  however with it I get a request to http   domain com socket io 1  t 1309967919512  Note it s not trying https  which causes it to fail   I m testing on chrome  since it is the target browser for this application   I apologize if this is a simple question  I m a node socket io newbie   Thanks

User · Answer

For enterprise applications it should be noted that you should not be handling https in your code  It should be auto upgraded via IIS or nginx  The app shouldn t know about what protocols are used

User · Answer

Use a secure URL for your initial connection  i e  instead of  http     use  https      If the WebSocket transport is chosen  then Socket IO should automatically use  wss      SSL  for the WebSocket connection too   Update   You can also try creating the connection using the  secure  option   var socket   io connect  https   localhost    secure  true

User · Answer

If your server certificated file is not trusted   for example  you may generate the keystore by yourself with keytool command in java   you should add the extra option rejectUnauthorized  var socket   io connect  https   localhost    rejectUnauthorized  false

User · Answer

On the same note  if your server supports both http and https you can connect using   var socket   io connect    localhost      to auto detect the browser scheme and connect using http https accordingly  when in https  the transport will be secured by default  as connecting using  var socket   io connect  https   localhost      will use secure web sockets - wss     the   secure  true  is redundant    for more information on how to serve both http and https easily using the same node server check out this answer

User · Answer

check this configuration     app   module exports   express    var httpsOptions     key  fs readFileSync  certificates server key    cert  fs readFileSync  certificates final crt              var secureServer   require  https   createServer httpsOptions  app   io   module exports   require  socket io   listen secureServer  pingTimeout  7000  pingInterval  10000    io set  transports     xhr-polling   websocket   polling    htmlfile     secureServer listen 3000

User · Answer

This is how I managed to set it up with express   var fs   require   fs     var app   require  express      var https          require  https    var server   https createServer       key  fs readFileSync    test key key        cert  fs readFileSync    test cert crt        ca  fs readFileSync    test ca crt        requestCert  false      rejectUnauthorized  false   app   server listen 8080    var io   require  socket io   listen server    io sockets on  connection  function  socket                 app get      function request  response                 I hope that this will save someone s time   Update   for those using lets encrypt use this   var server   https createServer                    key  fs readFileSync  privkey pem                    cert  fs readFileSync  fullchain pem                   app

User · Answer

Depending on your needs  you could allow both secure and unsecure connections and still only use one Socket io instance  You simply have to instanciate two servers  one for HTTP and one for HTTPS  then attach those servers to the Socket io instance  Server side      needed to read certificates from disk const fs            require   quot fs quot            Servers with and without SSL const http          require   quot http quot     const https         require   quot https quot     const httpPort      3333  const httpsPort     3334  const httpServer    http createServer    const httpsServer   https createServer        quot key quot    fs readFileSync   quot yourcert key quot          quot cert quot   fs readFileSync   quot yourcert crt quot          quot ca quot     fs readFileSync   quot yourca crt quot          httpServer listen  httpPort  function         console log    Listening HTTP on   httpPort          httpsServer listen  httpsPort  function         console log    Listening HTTPS on   httpsPort              Socket io const ioServer   require   quot socket io quot     const io         new ioServer    io attach  httpServer     io attach  httpsServer     io on   quot connection quot   function  socket          console log   quot user connected quot                your code       Client side   var url       quot   example com  quot      window location protocol     quot https  quot     quot 3334 quot     quot 3333 quot     var socket   io  url           set to false only if you use self-signed certificate        quot rejectUnauthorized quot   true     socket on   quot connect quot   function  e         console log   quot connect quot   e         If your NodeJS server is different from your Web server  you will maybe need to set some CORS headers  So in the server side  replace  const httpServer    http createServer    const httpsServer   https createServer        quot key quot    fs readFileSync   quot yourcert key quot          quot cert quot   fs readFileSync   quot yourcert crt quot          quot ca quot     fs readFileSync   quot yourca crt quot           With  const CORS fn    req  res    gt        res setHeader   quot Access-Control-Allow-Origin quot         quot   quot            res setHeader   quot Access-Control-Allow-Credentials quot    quot true quot         res setHeader   quot Access-Control-Allow-Methods quot        quot   quot            res setHeader   quot Access-Control-Allow-Headers quot        quot   quot            if   req method      quot OPTIONS quot              res writeHead 200           res end            return           const httpServer    http createServer  CORS fn    const httpsServer   https createServer            quot key quot    fs readFileSync   quot yourcert key quot              quot cert quot   fs readFileSync   quot yourcert crt quot              quot ca quot     fs readFileSync   quot yourca crt quot         CORS fn     And of course add remove headers and set the values of the headers according to your needs

User · Answer

This is my nginx config file and iosocket code  Server express  is listening on port 9191   It works well  nginx config file   server       listen       443 ssl      server name  localhost      root    usr share nginx html rdist       location  user            proxy pass   http   localhost 9191            location  api            proxy pass   http   localhost 9191            location  auth            proxy pass   http   localhost 9191             location             index  index html index htm          if   -e  request filename             rewrite         index html break                      location  socket io            proxy set header Upgrade  http upgrade          proxy set header Connection  upgrade           proxy pass   http   localhost 9191 socket io               error page   500 502 503 504   50x html      location    50x html           root    usr share nginx html             ssl certificate  etc nginx conf d sslcert xxx pem      ssl certificate key  etc nginx conf d sslcert xxx key        Server    const server   require  http   Server app  const io   require  socket io   server  io on  connection    socket    gt        handleUserConnect socket     socket on  disconnect        gt       handleUserDisConnect socket            server listen 9191  function        console log  Server listening on port 9191         Client react        const socket   io connect       secure  true  query   userId   this props user  id               socket on  notifications   data   gt                console log  Get messages from back end    data              this props mergeNotifications data

User · Answer

Server-side    import http from  http   import https from  https   import SocketIO    Socket   from  socket io   import fs from  fs   import path from  path    import   logger   from        utils    const port  number   3001   const server  https Server   https createServer          cert  fs readFileSync path resolve   dirname            ssl cert pem         key  fs readFileSync path resolve   dirname            ssl key pem            req  http IncomingMessage  res  http ServerResponse    gt        logger info  request url    req url          let filePath         req url      if  filePath                   filePath   path resolve   dirname     index html               const extname   String path extname filePath   toLowerCase        const mimeTypes             html    text html           js    text javascript           json    application json              const contentType   mimeTypes extname      application octet-stream        fs readFile filePath   error  NodeJS ErrnoException  content  Buffer    gt          if  error            res writeHead 500           return res end error message                 res writeHead 200     Content-Type   contentType           res end content   utf-8                    const io  SocketIO Server   SocketIO server    io on  connection    socket  Socket    gt      socket emit  news     hello   world        socket on  updateTemplate   data   gt        logger info data       socket emit  updateTemplate     random  data                server listen port       gt      logger info  Https server is listening on https   localhost   port           Client-side    lt  DOCTYPE html gt   lt html lang  en  gt    lt head gt     lt meta charset  UTF-8  gt     lt meta name  viewport  content  width device-width  initial-scale 1 0  gt     lt meta http-equiv  X-UA-Compatible  content  ie edge  gt     lt title gt Websocket Secure Connection lt  title gt   lt  head gt    lt body gt     lt div gt       lt button id  btn  gt Send Message lt  button gt       lt ul id  messages  gt  lt  ul gt     lt  div gt     lt script src           node modules socket io-client dist socket io js  gt  lt  script gt     lt script gt      window onload   function onload           const socket   io  https   localhost 3001          socket on  news   function  data            console log data                    socket on  updateTemplate   function onUpdateTemplate data            console log data          createMessage JSON stringify data                    const  btn   document getElementById  btn          const  messages   document getElementById  messages           function sendMessage             socket emit  updateTemplate   Math random                    function createMessage msg            const  li   document createElement  li             li textContent   msg           messages appendChild  li                   btn addEventListener  click   sendMessage            lt  script gt   lt  body gt    lt  html gt

[ssl] node.js, socket.io with SSL

Examples related to ssl

Examples related to node.js

Examples related to https

Examples related to websocket

Examples related to socket.io