首页 发现 帮助
注册 登录
904118851
/
game_zhineng_baoliang
1
0
派生 0
文件 工单管理 0 合并请求 0 Wiki
目录树: 12e91d2939
分支列表 标签列表
game_zhineng_ba...
/
node_modules
/
amqplib
/
examples
/
ssl.js

ssl.js 2.4 KB
文件历史 原始文件

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970 
  1. // Example of using a TLS/SSL connection. Note that the server must be
    2. 

  2. // configured to accept SSL connections; see, for example,
    3. 

  3. // http://www.rabbitmq.com/ssl.html.
    4. 

  4. //
    5. 

  5. // When trying this out, I followed the RabbitMQ SSL guide above,
    6. 

  6. // almost verbatim. I set the CN of the server certificate to
    7. 

  7. // 'localhost' rather than $(hostname) (since on my MBP hostname ends
    8. 

  8. // up being "<blah>.local", which is just weird). My client
    9. 

  9. // certificates etc., are in `../etc/client/`. My testca certificate
    10. 

  10. // is in `../etc/testca` and server certs etc., in `../etc/server`,
    11. 

  11. // and I've made a `rabbitmq.config` file, with which I start
    12. 

  12. // RabbitMQ:
    13. 

  13. //
    14. 

  14. //     RABBITMQ_CONFIG_FILE=`pwd`/../etc/server/rabbitmq \
    15. 

  15. //       /usr/local/sbin/rabbitmq-server &
    16. 

  16. //
    17. 

  17. // A way to check RabbitMQ's running with SSL OK is to use
    18. 

  18. //
    19. 

  19. //     openssl s_client -connect localhost:5671
    20. 

  20. 

  21. const amqp = require('../');
    22. 

  22. const fs = require('fs');
    23. 

  23. 

  24. // Assemble the SSL options; for verification we need at least
    25. 

  25. // * a certificate to present to the server ('cert', in PEM format)
    26. 

  26. // * the private key for the certificate ('key', in PEM format)
    27. 

  27. // * (possibly) a passphrase for the private key
    28. 

  28. //
    29. 

  29. // The first two may be replaced with a PKCS12 file ('pfx', in pkcs12
    30. 

  30. // format)
    31. 

  31. 

  32. // We will also want to list the CA certificates that we will trust,
    33. 

  33. // since we're using a self-signed certificate. It is NOT recommended
    34. 

  34. // to use `rejectUnauthorized: false`.
    35. 

  35. 

  36. // Options for full client and server verification:
    37. 

  37. const opts = {
    38. 

  38.   cert: fs.readFileSync('../etc/client/cert.pem'),
    39. 

  39.   key: fs.readFileSync('../etc/client/key.pem'),
    40. 

  40.   // cert and key or
    41. 

  41.   // pfx: fs.readFileSync('../etc/client/keycert.p12'),
    42. 

  42.   passphrase: 'MySecretPassword',
    43. 

  43.   ca: [fs.readFileSync('../etc/testca/cacert.pem')]
    44. 

  44. };
    45. 

  45. 

  46. // Options for just confidentiality. This requires RabbitMQ's SSL
    47. 

  47. // configuration to include the items
    48. 

  48. //
    49. 

  49. //     {verify, verify_none},
    50. 

  50. //     {fail_if_no_peer_cert,false}
    51. 

  51. //
    52. 

  52. // const opts = {  ca: [fs.readFileSync('../etc/testca/cacert.pem')] };
    53. 

  53. 

  54. // Option to use the SSL client certificate for authentication
    55. 

  55. // opts.credentials = amqp.credentials.external();
    56. 

  56. 

  57. (async () => {
    58. 

  58.   const connection = await amqp.connect('amqp://localhost', opts);
    59. 

  59.   const channel = await connection.createChannel();
    60. 

  60. 

  61.   process.on('SIGINT', async () => {
    62. 

  62.     await channel.close();
    63. 

  63.     await connection.close();
    64. 

  64.   });
    65. 

  65. 

  66.   channel.sendToQueue('foo', Buffer.from('Hello World!'));
    67. 

  67. 

  68.   console.log(' [x] To exit press CTRL+C.');
    69. 

  69. })();
    70. 

  70.