How to humanely publish a project with HTTPS certificates

[Insider515]

Why is there no normal instructions anywhere on how to publish a project with certificates without HTTPS crutches? The absence of this functionality makes the framework non grata. Using a second web server for these purposes is pornography. Manually editing something that should work out of the box is terrible. Please provide a way to simply specify the path to the certificates and the protocol type in ENV - so that it works, like a human being. Thanks in advance. I'll go try to find a way to launch my project with HTTPS..

[RomainLanz]

Hi, thanks for your feedback.

In most production setups, handling HTTPS is typically delegated to a reverse proxy such as Nginx, Traefik, Caddy, or Apache. These tools are designed specifically to manage TLS certificates, handle protocol negotiation, and provide better security and performance for public-facing endpoints.

Managing HTTPS directly within the application is generally discouraged, as it introduces complexity and security risks that are better handled by dedicated, battle-tested software.

[Insider515]

I found this solution for myself. Maybe it will be useful to someone..

#/bin/server.ts
import 'reflect-metadata';
import { Ignitor, prettyPrintError } from '@adonisjs/core';
import { readFileSync } from 'node:fs';
import { createServer as createHttpsServer } from 'node:https';

const APP_ROOT = new URL('../', import.meta.url);
const IMPORTER = (filePath) => {
if (filePath.startsWith('./') || filePath.startsWith('../')) {
return import(new URL(filePath, APP_ROOT).href);
}
return import(filePath);
};

const sslOptions = {
key: readFileSync('/certs/privkey.pem'),
cert: readFileSync('/certs/fullchain.pem')
};

new Ignitor(APP_ROOT, { importer: IMPORTER })
.tap((app) => {
app.booting(async () => {
await import('#start/env');
});
app.listen('SIGTERM', () => app.terminate());
app.listenIf(app.managedByPm2, 'SIGINT', () => app.terminate());
app.ready(async () => {
console.log('Server is ready (HTTPS)');
await import('#start/ws');
});
})
.httpServer()
.start((handler) => {
return createHttpsServer(sslOptions, handler);
})
.catch((error) => {
process.exitCode = 1;
prettyPrintError(error);
});