feat: add HTTPs protocol support

Add built-in support for HTTPS protocol.

Author: Hage Yaapa

packages/http-server/package.json

@@ -29,7 +29,7 @@
     "@loopback/testlab": "^0.10.11",
     "@types/node": "^10.1.2",
     "@types/p-event": "^1.3.0",
-    "@types/request-promise-native": "^1.0.14",
+    "@types/request-promise-native": "^1.0.15",
     "request-promise-native": "^1.0.5"
   },
   "files": [

packages/http-server/src/http-server.ts

@@ -3,24 +3,60 @@
 // This file is licensed under the MIT License.
 // License text available at https://opensource.org/licenses/MIT
 
-import {createServer, Server, ServerRequest, ServerResponse} from 'http';
+import {ServerRequest, ServerResponse} from 'http';
+import * as http from 'http';
+import * as https from 'https';
 import {AddressInfo} from 'net';
+
 import * as pEvent from 'p-event';
 
-export type HttpRequestListener = (
-  req: ServerRequest,
-  res: ServerResponse,
-) => void;
+export type RequestListener = (req: ServerRequest, res: ServerResponse) => void;
 
 /**
- * Object for specifyig the HTTP / HTTPS server options
+ * Basic HTTP server listener options
+ *
+ * @export
+ * @interface ListenerOptions
  */
-export type HttpServerOptions = {
-  port?: number;
+export interface ListenerOptions {
   host?: string;
-  protocol?: HttpProtocol;
-};
+  port?: number;
+}
 
+/**
+ * HTTP server options
+ *
+ * @export
+ * @interface HttpOptions
+ */
+export interface HttpOptions extends ListenerOptions {
+  protocol?: 'http';
+}
+
+/**
+ * HTTPS server options
+ *
+ * @export
+ * @interface HttpsOptions
+ */
+export interface HttpsOptions extends ListenerOptions, https.ServerOptions {
+  protocol: 'https';
+}
+
+/**
+ * Possible server options
+ *
+ * @export
+ * @type HttpServerOptions
+ */
+export type HttpServerOptions = HttpOptions | HttpsOptions;
+
+/**
+ * Supported protocols
+ *
+ * @export
+ * @type HttpProtocol
+ */
 export type HttpProtocol = 'http' | 'https'; // Will be extended to `http2` in the future
 
 /**
@@ -35,44 +71,51 @@ export class HttpServer {
   private _listening: boolean = false;
   private _protocol: HttpProtocol;
   private _address: AddressInfo;
-  private httpRequestListener: HttpRequestListener;
-  private httpServer: Server;
+  private requestListener: RequestListener;
+  private server: http.Server | https.Server;
+  private serverOptions?: HttpServerOptions;
 
   /**
-   * @param httpServerOptions
-   * @param httpRequestListener
+   * @param requestListener
+   * @param serverOptions
    */
   constructor(
-    httpRequestListener: HttpRequestListener,
-    httpServerOptions?: HttpServerOptions,
+    requestListener: RequestListener,
+    serverOptions?: HttpServerOptions,
   ) {
-    this.httpRequestListener = httpRequestListener;
-    if (!httpServerOptions) httpServerOptions = {};
-    this._port = httpServerOptions.port || 0;
-    this._host = httpServerOptions.host || undefined;
-    this._protocol = httpServerOptions.protocol || 'http';
+    this.requestListener = requestListener;
+    this.serverOptions = serverOptions;
+    this._port = serverOptions ? serverOptions.port || 0 : 0;
+    this._host = serverOptions ? serverOptions.host : undefined;
+    this._protocol = serverOptions ? serverOptions.protocol || 'http' : 'http';
   }
 
   /**
    * Starts the HTTP / HTTPS server
    */
   public async start() {
-    this.httpServer = createServer(this.httpRequestListener);
-    this.httpServer.listen(this._port, this._host);
-    await pEvent(this.httpServer, 'listening');
+    if (this._protocol === 'https') {
+      this.server = https.createServer(
+        this.serverOptions as https.ServerOptions,
+        this.requestListener,
+      );
+    } else {
+      this.server = http.createServer(this.requestListener);
+    }
+    this.server.listen(this._port, this._host);
+    await pEvent(this.server, 'listening');
     this._listening = true;
-    this._address = this.httpServer.address() as AddressInfo;
+    this._address = this.server.address() as AddressInfo;
   }
 
   /**
    * Stops the HTTP / HTTPS server
    */
   public async stop() {
-    if (this.httpServer) {
-      this.httpServer.close();
-      await pEvent(this.httpServer, 'close');
-      this._listening = false;
-    }
+    if (!this.server) return;
+    this.server.close();
+    await pEvent(this.server, 'close');
+    this._listening = false;
   }
 
   /**

packages/http-server/test/integration/cert.pem

@@ -0,0 +1,21 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

packages/http-server/test/integration/http-server.integration.ts

@@ -2,38 +2,42 @@
 // Node module: @loopback/http-server
 // This file is licensed under the MIT License.
 // License text available at https://opensource.org/licenses/MIT
-import {HttpServer} from '../../';
+import {HttpServer, HttpOptions, HttpServerOptions} from '../../';
 import {supertest, expect} from '@loopback/testlab';
 import * as makeRequest from 'request-promise-native';
 import {ServerRequest, ServerResponse, get, IncomingMessage} from 'http';
+import * as https from 'https';
+import * as path from 'path';
+import * as fs from 'fs';
+import * as url from 'url';
 
 describe('HttpServer (integration)', () => {
   let server: HttpServer | undefined;
 
   afterEach(stopServer);
 
-  process.env.TRAVIS
-    ? // tslint:disable-next-line:no-unused-expression
-      it.skip
-    : it('formats IPv6 url correctly', async () => {
-        server = new HttpServer(dummyRequestHandler, {host: '::1'});
-        await server.start();
-        expect(server.address!.family).to.equal('IPv6');
-        const response = await getAsync(server.url);
-        expect(response.statusCode).to.equal(200);
-      });
+  itSkippedOnTravis('formats IPv6 url correctly', async () => {
+    server = new HttpServer(dummyRequestHandler, {
+      host: '::1',
+    } as HttpOptions);
+    await server.start();
+    expect(server.address!.family).to.equal('IPv6');
+    const response = await getAsync(server.url);
+    expect(response.statusCode).to.equal(200);
+  });
 
   it('starts server', async () => {
-    server = new HttpServer(dummyRequestHandler);
+    const serverOptions = givenServerOptions();
+    server = new HttpServer(dummyRequestHandler, serverOptions);
     await server.start();
-    supertest(server.url)
+    await supertest(server.url)
       .get('/')
       .expect(200);
   });
 
   it('stops server', async () => {
-    // Explicitly setting host to IPv4 address so test runs on Travis
-    server = new HttpServer(dummyRequestHandler, {host: '127.0.0.1'});
+    const serverOptions = givenServerOptions();
+    server = new HttpServer(dummyRequestHandler, serverOptions);
     await server.start();
     await server.stop();
     await expect(
@@ -122,7 +126,7 @@ describe('HttpServer (integration)', () => {
     expect(server.address).to.be.undefined();
   });
 
-  it('exports started', async () => {
+  it('exports listening', async () => {
     server = new HttpServer(dummyRequestHandler);
     await server.start();
     expect(server.listening).to.be.true();
@@ -134,8 +138,38 @@ describe('HttpServer (integration)', () => {
     server = new HttpServer(dummyRequestHandler);
     await server.start();
     const port = server.port;
-    const anotherServer = new HttpServer(dummyRequestHandler, {port: port});
-    expect(anotherServer.start()).to.be.rejectedWith(/EADDRINUSE/);
+    const anotherServer = new HttpServer(dummyRequestHandler, {
+      port: port,
+    });
+    await expect(anotherServer.start()).to.be.rejectedWith(/EADDRINUSE/);
+  });
+
+  it('supports HTTPS protocol with key and certificate files', async () => {
+    const serverOptions = givenServerOptions();
+    const httpsServer: HttpServer = givenHttpsServer(serverOptions);
+    await httpsServer.start();
+    const response = await httpsGetAsync(httpsServer.url);
+    expect(response.statusCode).to.equal(200);
+  });
+
+  it('supports HTTPS protocol with a pfx file', async () => {
+    const options = {usePfx: true};
+    const serverOptions = givenServerOptions();
+    Object.assign(serverOptions, options);
+    const httpsServer: HttpServer = givenHttpsServer(serverOptions);
+    await httpsServer.start();
+    const response = await httpsGetAsync(httpsServer.url);
+    expect(response.statusCode).to.equal(200);
+  });
+
+  itSkippedOnTravis('handles IPv6 loopback address in HTTPS', async () => {
+    const httpsServer: HttpServer = givenHttpsServer({
+      host: '::1',
+    });
+    await httpsServer.start();
+    expect(httpsServer.address!.family).to.equal('IPv6');
+    const response = await httpsGetAsync(httpsServer.url);
+    expect(response.statusCode).to.equal(200);
   });
 
   function dummyRequestHandler(req: ServerRequest, res: ServerResponse): void {
@@ -147,9 +181,67 @@ describe('HttpServer (integration)', () => {
     await server.stop();
   }
 
-  function getAsync(url: string): Promise<IncomingMessage> {
+  function getAsync(urlString: string): Promise<IncomingMessage> {
+    return new Promise((resolve, reject) => {
+      get(urlString, resolve).on('error', reject);
+    });
+  }
+
+  function givenHttpsServer({
+    usePfx,
+    host,
+  }: {
+    usePfx?: boolean;
+    host?: string;
+  }): HttpServer {
+    const options: HttpServerOptions = {protocol: 'https', host};
+    if (usePfx) {
+      const pfxPath = path.join(__dirname, 'pfx.pfx');
+      options.pfx = fs.readFileSync(pfxPath);
+      options.passphrase = 'loopback4';
+    } else {
+      const keyPath = path.join(__dirname, 'key.pem');
+      const certPath = path.join(__dirname, 'cert.pem');
+      options.key = fs.readFileSync(keyPath);
+      options.cert = fs.readFileSync(certPath);
+    }
+    return new HttpServer(dummyRequestHandler, options);
+  }
+
+  function httpsGetAsync(urlString: string): Promise<IncomingMessage> {
+    const agent = new https.Agent({
+      rejectUnauthorized: false,
+    });
+
+    const urlOptions = url.parse(urlString);
+    const options = {agent, ...urlOptions};
+
     return new Promise((resolve, reject) => {
-      get(url, resolve).on('error', reject);
+      https.get(options, resolve).on('error', reject);
     });
   }
+
+  function givenServerOptions(
+    options: Partial<HttpServerOptions> = {},
+  ): HttpServerOptions {
+    const defaults = process.env.TRAVIS ? {host: '127.0.0.1'} : {};
+    return Object.assign(defaults, options);
+  }
+
+  // tslint:disable-next-line:no-any
+  type TestCallbackRetval = void | PromiseLike<any>;
+
+  function itSkippedOnTravis(
+    expectation: string,
+    callback?: (
+      this: Mocha.ITestCallbackContext,
+      done: MochaDone,
+    ) => TestCallbackRetval,
+  ): void {
+    if (process.env.TRAVIS) {
+      it.skip(`[SKIPPED ON TRAVIS] ${expectation}`, callback);
+    } else {
+      it(expectation, callback);
+    }
+  }
 });

packages/http-server/test/integration/key.pem

@@ -0,0 +1,28 @@
+-----BEGIN PRIVATE KEY-----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+-----END PRIVATE KEY-----