https://github.com/shortarrow/localssldev

devtools
https://github.com/shortarrow/localssldev

http ssl ssl-proxy

Last synced: about 1 year ago
JSON representation

devtools

• Host: GitHub
• URL: https://github.com/shortarrow/localssldev
• Owner: ShortArrow
• Created: 2023-10-28T07:45:21.000Z (over 2 years ago)
• Default Branch: main
• Last Pushed: 2023-10-29T18:32:31.000Z (over 2 years ago)
• Last Synced: 2025-03-25T03:08:38.013Z (about 1 year ago)
• Topics: http, ssl, ssl-proxy
• Language: Shell
• Homepage:
• Size: 6.84 KB
• Stars: 0
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
# LOCAL SSL DEVELOPMENT TOOL

## Description

There is an HTTP service running within the LAN, assigned to an arbitrary IP. I want to launch a Docker container that sets up an HTTPS proxy to this HTTP service using letsencrypt, certbot, cloudflare and nginx. I want to be able to access this from within the host machine where the proxy container is running, using .

- Utilize `docker compose`.

- The A record of `local.hoge.jp` is managed by Cloudflare DNS.

- The A record of `local.hoge.jp` should be fixed at `127.0.0.1`.

- Ensure the `certbot renew` command is executed periodically as configured.

- Allow the setting of `local.hoge.jp` and the LAN internal IP in the `.env` file.

- I want to obtain a "real HTTPS certificate"  using DNS authentication.

- "real HTTPS certificate" means that a certificate that can be verified with a certificate already in the certificate store

- Write the `DOMAIN` and `LAN_IP` in the `.env` file just once.

## Architecture

```mermaid

sequenceDiagram

    box darkred your local machine

        participant A as User

        participant J as ThisTool

    end

    box darkblue Coudflare

        participant F as DNS

    end

    box darkgreen dev server in your LAN

        participant B as ContainerA

        participant C as ContainerB

    end

    A->>F: where is `local.hoge.jp`

    F->>A: that is `127.0.0.1`

    A->>J: `https://127.0.0.1:443`

    J->>B: please content of `http://192.168.0.123:3000`

    B->>J: This is contents

    J->>A: This is your wants

    A->>F: where is `api.hoge.jp`

    F->>A: that is `https://127.0.0.1`

    A->>J: `https://127.0.0.1:4443`

    J->>C: please content of `http://192.168.0.123:3333`

    C->>J: This is contents

    J->>A: This is your wants

```

## Usage

Run `./start_docker.sh` to start the docker container.

## Config

### cloudflare config

Make your own `cloudflare.ini` file.

```text

dns_cloudflare_api_token = YOUR_API_TOKEN

```

### .env

Make your own `.env` file.

```text

DOMAIN=local.hoge.jp

LAN_IP=192.168.0.123:3000

DOMAIN2=api.hoge.jp

LAN_IP2=192.168.0.123:3333

EMAIL=your_cloudflare_account_email_address@email.jp

```

## Disclaimer

This tool is for local development only.

Do not use it in a production environment.