Securing our site with HTTPS
In order to make our site secure, we will run the entire application under HTTPS. We will need two files: a PEM encoded SSL certificate ./lib/secure/cert.pem, and a private key ./lib/secure/key.pem. In order to create an SSL certificate, we first need to generate a private key and a certificate signing request (CSR). For development purposes, we will create a self-signed certificate. Run the following commands:
cd ../vision/lib/secure openssl req -newkey rsa:2048 -new -nodes -x509 -days 3650 -keyout key.pem -out cert.pem
Upon running the second command, you will enter an interactive prompt to generate a 2048-bit RSA private key and a certificate signing request (CSR). You will need to enter various pieces of information including address details, common name or domain name, company details, and an email address.
Let's add a module, ./lib/express/server.js, that will create a HTTP server based on the key/cert we have just created. We import the https module, read...
