README.md 6.23 KB
Newer Older
Aral Balkan's avatar
Aral Balkan committed
1
# Indie Web Server
Aral Balkan's avatar
Aral Balkan committed
2

Aral Balkan's avatar
Aral Balkan committed
3
Indie Web Server (IWS) is a secure and seamless [Small Tech](https://ar.al/2019/03/04/small-technology/) personal web server.
Aral Balkan's avatar
Aral Balkan committed
4

Aral Balkan's avatar
Aral Balkan committed
5 6 7 8 9
  - Zero-configuration – It Just Works 🤞™.

  - Develop and test with automatically-provisioned locally-trusted TLS thanks to [mkcert](https://github.com/FiloSottile/mkcert) via [Nodecert](https://source.ind.ie/hypha/tools/nodecert).

  - Stage and deploy with automatically-provisioned globally-trusted TLS thanks to [Let’s Encrypt](https://letsencrypt.org/) via [ACME TLS](https://source.ind.ie/hypha/tools/acme-tls) (with an A score on [SSL Labs SSL Server Test](https://www.ssllabs.com/ssltest)).
Aral Balkan's avatar
Aral Balkan committed
10

11 12

## Install
Aral Balkan's avatar
Aral Balkan committed
13 14

```sh
Aral Balkan's avatar
Aral Balkan committed
15
npm i -g @ind.ie/web-server
Aral Balkan's avatar
Aral Balkan committed
16 17
```

18
## Use
19

20
### Command-line
Aral Balkan's avatar
Aral Balkan committed
21

22 23 24
Start serving the current directory at https://localhost:

```shell
Aral Balkan's avatar
Aral Balkan committed
25
$ web-server
26 27 28 29 30
```

Start serving the _site_ directory at your hostname:

```shell
Aral Balkan's avatar
Aral Balkan committed
31
$ web-server site --global
32 33
```

Aral Balkan's avatar
Aral Balkan committed
34
For example, if you run the command on a connected server that has the ar.al domain pointing to it and `ar.al` set in _/etc/hostname_ (on Unix/Linux/macOS), you will be able to access the site at https://ar.al. The first time you hit it, it will take a little longer to load as your Let’s Encrypt certificates are being automatically provisioned by ACME TLS.
35 36 37

#### Syntax

Aral Balkan's avatar
Aral Balkan committed
38
```sh
Aral Balkan's avatar
Aral Balkan committed
39
web-server [folder-to-serve] [--port N] [--global] [--version]
Aral Balkan's avatar
Aral Balkan committed
40
```
41

Aral Balkan's avatar
Aral Balkan committed
42
All command-line arguments are optional. By default, Indie Web Server will serve your current working folder over port 433 with locally-trusted certificates.
43

Aral Balkan's avatar
Aral Balkan committed
44
If you specify the `--global` flag, globally-trusted Let’s Encrypt TLS certificates are automatically provisioned for you using ACME TLS the first time you hit your hostname. The hostname for the certificates is automatically set from the hostname of your system (and the _www._ subdomain is also automatically provisioned).
45

46 47
### API

Aral Balkan's avatar
Aral Balkan committed
48
Indie Web Server’s `createServer` method behaves like the built-in _https_ module’s `createServer` function. Anywhere you use `https.createServer`, you can simply replace it with `httpsServer.createServer`.
49

50

51
#### createServer([options], [requestListener])
52

53
  - __options__ _(object)___:__ see [https.createServer](https://nodejs.org/api/https.html#https_https_createserver_options_requestlistener). Populates the `cert` and `key` properties from the automatically-created [nodecert](https://source.ind.ie/hypha/tools/nodecert/) or Let’s Encrypt certificates and will overwrite them if they exist in the options object you pass in. If your options has `options.global = true` set, globally-trusted TLS certificates are obtained from Let’s Encrypt using ACME TLS.
54

Aral Balkan's avatar
Aral Balkan committed
55
  - __requestListener__ _(function)___:__ see [https.createServer](https://nodejs.org/api/https.html#https_https_createserver_options_requestlistener). If you don’t pass a request listener, Indie Web Server will use its default one.
56

57
    __Returns:__ [https.Server](https://nodejs.org/api/https.html#https_class_https_server) instance, configured with either locally-trusted certificates via nodecert or globally-trusted ones from Let’s Encrypt.
58

59
##### Example
60 61

```js
Aral Balkan's avatar
Aral Balkan committed
62
const webServer = require('@ind.ie/web-server')
63 64 65 66 67
const express = require('express')

const app = express()
app.use(express.static('.'))

68
const options = {} // to use globally-trusted certificates instead, set this to {global: true}
Aral Balkan's avatar
Aral Balkan committed
69
const server = webServer.createServer(options, app).listen(443, () => {
70 71 72 73
  console.log(` 🎉 Serving on https://localhost\n`)
})
```

74 75 76
#### serve([options])

Options is an optional parameter object that may contain the following properties, all optional:
77

78
  - __path__ _(string)___:__ the directory to serve using [Express](http://expressjs.com/).static.
79

80 81 82 83
  - __callback__ _(function)___:__ a function to be called when the server is ready. If you do not specify a callback, you can specify the port as the second argument.

  - __port__ _(number)___:__ the port to serve on. Defaults to 443. (On Linux, privileges to bind to the port are automatically obtained for you.)

84
  - __global__ _(boolean)___:__ if true, globally-trusted Let’s Encrypt certificates will be provisioned (if necesary) and used via ACME TLS. If false (default), locally-trusted certificates will be provisioned (if necesary) and used using nodecert.
85 86

    __Returns:__ [https.Server](https://nodejs.org/api/https.html#https_class_https_server) instance, configured with either locally or globally-trusted certificates.
87 88


Aral Balkan's avatar
Aral Balkan committed
89
##### Examples
90

Aral Balkan's avatar
Aral Balkan committed
91
Serve the current directory at https://localhost using locally-trusted TLS certificates:
92

93
```js
Aral Balkan's avatar
Aral Balkan committed
94 95
const webServer = require('@ind.ie/web-server')
const server = webServer.serve()
96 97
```

Aral Balkan's avatar
Aral Balkan committed
98
Serve the current directory at your hostname using globally-trusted Let’s Encrypt TLS certificates:
99 100

```js
Aral Balkan's avatar
Aral Balkan committed
101 102
const webServer = require('@ind.ie/web-server')
const server = webServer.serve({global: true})
103 104
```

105 106
## Help wanted

Aral Balkan's avatar
Aral Balkan committed
107 108 109
For locally-trusted certificates, all dependencies are installed automatically for you if they do not exist if you have apt, pacman, or yum (untested) on Linux or if you have [Homebrew](https://brew.sh/) or [MacPorts](https://www.macports.org/) (untested) on macOS.

I can use your help to test Indie Web Server on the following platform/package manager combinations:
110

111 112
  - Linux with yum
  - macOS with MacPorts
113

Aral Balkan's avatar
Aral Balkan committed
114
Please [let me know how/if it works](https://github.com/indie-mirror/web-server/issues). Thank you!
115

Aral Balkan's avatar
Aral Balkan committed
116
Also, automatic hostname detection has not been implemented for Windows and so globally-trusted certificates will fail on that platform. If you get to it before I do, [I would appreciate a pull request](https://github.com/indie-mirror/web-server/pulls).
117

118

119 120 121
## Thanks

  * [thagoat](https://github.com/thagoat) for confirming that [installation works on Arch Linux with Pacman](https://github.com/indie-mirror/https-server/issues/1).
122 123 124 125

  * [Tim Knip](https://github.com/timknip) for confirming that [the module works with 64-bit Windows](https://github.com/indie-mirror/https-server/issues/2) with the following behaviour: “Install pops up a windows dialog to allow adding the cert.”

  * [Run Rabbit Run](https://hackers.town/@nobody) for [the following information](https://hackers.town/@nobody/101670447262172957) on 64-bit Windows: “Win64: works with the windows cert install popup on server launch. Chrome and ie are ok with the site then. FF 65 still throws the cert warning even after restarting.”