greenlock-express.js/index.js

'use strict';

var PromiseA;
try {
  PromiseA = require('bluebird');
} catch(e) {
  PromiseA = global.Promise;
}

// opts.approveDomains(options, certs, cb)
module.exports.create = function (opts) {
  // accept all defaults for greenlock.challenges, greenlock.store, greenlock.middleware
  if (!opts._communityPackage) {
    opts._communityPackage = 'greenlock-express.js';
    opts._communityPackageVersion = require('./package.json').version;
  }

  function explainError(e) {
    console.error('Error:' + e.message);
    if ('EACCES' === e.errno) {
      console.error("You don't have prmission to access '" + e.address + ":" + e.port + "'.");
      console.error("You probably need to use \"sudo\" or \"sudo setcap 'cap_net_bind_service=+ep' $(which node)\"");
      return;
    }
    if ('EADDRINUSE' === e.errno) {
      console.error("'" + e.address + ":" + e.port + "' is already being used by some other program.");
      console.error("You probably need to stop that program or restart your computer.");
      return;
    }
    console.error(e.code + ": '" + e.address + ":" + e.port + "'");
  }

  function _createPlain(plainPort) {
    if (!plainPort) { plainPort = 80; }

    var parts = String(plainPort).split(':');
    var p = parts.pop();
    var addr = parts.join(':').replace(/^\[/, '').replace(/\]$/, '');
    var args = [];
    var httpType;
    var server;
    var validHttpPort = (parseInt(p, 10) >= 0);

    if (addr) { args[1] = addr; }
    if (!validHttpPort && !/(\/)|(\\\\)/.test(p)) {
      console.warn("'" + p + "' doesn't seem to be a valid port number, socket path, or pipe");
    }

    server = require('http').createServer(
      greenlock.middleware.sanitizeHost(greenlock.middleware(require('redirect-https')()))
    );
    httpType = 'http';

    return { server: server, listen: function () { return new PromiseA(function (resolve, reject) {
      args[0] = p;
      args.push(function () {
        if (!greenlock.servername) {
          if (Array.isArray(greenlock.approvedDomains) && greenlock.approvedDomains.length) {
            greenlock.servername = greenlock.approvedDomains[0];
          }
          if (Array.isArray(greenlock.approveDomains) && greenlock.approvedDomains.length) {
            greenlock.servername = greenlock.approvedDomains[0];
          }
        }

        if (!greenlock.servername) {
          resolve(null);
          return;
        }

        return greenlock.check({ domains: [ greenlock.servername ] }).then(function (certs) {
          if (certs) {
            return {
              key: Buffer.from(certs.privkey, 'ascii')
            , cert: Buffer.from(certs.cert + '\r\n' + certs.chain, 'ascii')
            };
          }
          console.info("Fetching certificate for '%s' to use as default for HTTPS server...", greenlock.servername);
          return new PromiseA(function (resolve, reject) {
            // using SNICallback because all options will be set
            greenlock.tlsOptions.SNICallback(greenlock.servername, function (err/*, secureContext*/) {
              if (err) { reject(err); return; }
              return greenlock.check({ domains: [ greenlock.servername ] }).then(function (certs) {
                resolve({
                  key: Buffer.from(certs.privkey, 'ascii')
                , cert: Buffer.from(certs.cert + '\r\n' + certs.chain, 'ascii')
                });
              }).catch(reject);
            });
          });
        }).then(resolve).catch(reject);
      });
      server.listen.apply(server, args).on('error', function (e) {
        if (server.listenerCount('error') < 2) {
          console.warn("Did not successfully create http server and bind to port '" + p + "':");
          explainError(e);
          process.exit(41);
        }
      });
    }); } };
  }

  function _create(port) {
    if (!port) { port = 443; }

    var parts = String(port).split(':');
    var p = parts.pop();
    var addr = parts.join(':').replace(/^\[/, '').replace(/\]$/, '');
    var args = [];
    var httpType;
    var server;
    var validHttpPort = (parseInt(p, 10) >= 0);

    if (addr) { args[1] = addr; }
    if (!validHttpPort && !/(\/)|(\\\\)/.test(p)) {
      console.warn("'" + p + "' doesn't seem to be a valid port number, socket path, or pipe");
    }

    var https;
    try {
      https = require('spdy');
      greenlock.tlsOptions.spdy = { protocols: [ 'h2', 'http/1.1' ], plain: false };
      httpType = 'http2 (spdy/h2)';
    } catch(e) {
      https = require('https');
      httpType = 'https';
    }
    var sniCallback = greenlock.tlsOptions.SNICallback;
    greenlock.tlsOptions.SNICallback = function (domain, cb) {
      sniCallback(domain, function (err, context) {
        cb(err, context);

        if (!context || server._hasDefaultSecureContext) { return; }
        if (!domain) { domain = greenlock.servername; }
        if (!domain) { return; }

        return greenlock.check({ domains: [ domain ] }).then(function (certs) {
          // ignore the case that check doesn't have all the right args here
          // to get the same certs that it just got (eventually the right ones will come in)
          if (!certs) { return; }
          if (server.setSecureContext) {
            // only available in node v11.0+
            server.setSecureContext({
              key: Buffer.from(certs.privkey, 'ascii')
            , cert: Buffer.from(certs.cert + '\r\n' + certs.chain, 'ascii')
            });
            console.info("Using '%s' as default certificate", domain);
          } else {
            console.info("Setting default certificates dynamically requires node v11.0+. Skipping.");
          }
          server._hasDefaultSecureContext = true;
        }).catch(function (/*e*/) {
          // this may be that the test.example.com was requested, but it's listed
          // on the cert for demo.example.com which is in its own directory, not the other
          //console.warn("Unusual error: couldn't get newly authorized certificate:");
          //console.warn(e.message);
        });
      });
    };
    if (greenlock.tlsOptions.cert) {
      server._hasDefaultSecureContext = true;
      if (greenlock.tlsOptions.cert.toString('ascii').split("BEGIN").length < 3) {
        console.warn("Invalid certificate file. 'tlsOptions.cert' should contain cert.pem (certificate file) *and* chain.pem (intermediate certificates) seperated by an extra newline (CRLF)");
      }
    }
    server = https.createServer(
      greenlock.tlsOptions
    , greenlock.middleware.sanitizeHost(function (req, res) {
        try {
          greenlock.app(req, res);
        } catch(e) {
          console.error("[error] [greenlock.app] Your HTTP handler had an uncaught error:");
          console.error(e);
          try {
            res.statusCode = 500;
            res.end("Internal Server Error: [Greenlock] HTTP exception logged for user-provided handler.");
          } catch(e) {
            // ignore
            // (headers may have already been sent, etc)
          }
        }
      })
    );
    server.type = httpType;

    return { server: server, listen: function () { return new PromiseA(function (resolve) {
      args[0] = p;
      args.push(function () { resolve(/*server*/); });
      server.listen.apply(server, args).on('error', function (e) {
        if (server.listenerCount('error') < 2) {
          console.warn("Did not successfully create http server and bind to port '" + p + "':");
          explainError(e);
          process.exit(41);
        }
      });
    }); } };
  }

  // NOTE: 'greenlock' is just 'opts' renamed
  var greenlock = require('greenlock').create(opts);

  if (!opts.app) {
    opts.app = function (req, res) {
      res.end("Hello, World!\nWith Love,\nGreenlock for Express.js");
    };
  }

  opts.listen = function (plainPort, port, fnPlain, fn) {
    var server;
    var plainServer;

    // If there is only one handler for the `listening` (i.e. TCP bound) event
    // then we want to use it as HTTPS (backwards compat)
    if (!fn) {
      fn = fnPlain;
      fnPlain = null;
    }

    var obj1 = _createPlain(plainPort, true);
    var obj2 = _create(port, false);

    plainServer = obj1.server;
    server = obj2.server;

    server.then = obj1.listen().then(function (tlsOptions) {
      if (tlsOptions) {
        if (server.setSecureContext) {
          // only available in node v11.0+
          server.setSecureContext(tlsOptions);
          console.info("Using '%s' as default certificate", greenlock.servername);
        } else {
          console.info("Setting default certificates dynamically requires node v11.0+. Skipping.");
        }
        server._hasDefaultSecureContext = true;
      }
      return obj2.listen().then(function () {
        // Report plain http status
        if ('function' === typeof fnPlain) {
          fnPlain.apply(plainServer);
        } else if (!fn && !plainServer.listenerCount('listening') && !server.listenerCount('listening')) {
          console.info('[:' + (plainServer.address().port || plainServer.address())
            + "] Handling ACME challenges and redirecting to " + server.type);
        }

        // Report h2/https status
        if ('function' === typeof fn) {
          fn.apply(server);
        } else if (!server.listenerCount('listening')) {
          console.info('[:' + (server.address().port || server.address()) + "] Serving " + server.type);
        }
      });
    }).then;

    server.unencrypted = plainServer;
    return server;
  };
  opts.middleware.acme = function (opts) {
    return greenlock.middleware.sanitizeHost(greenlock.middleware(require('redirect-https')(opts)));
  };
  opts.middleware.secure = function (app) {
    return greenlock.middleware.sanitizeHost(app);
  };

  return greenlock;
};
move approval work to worker 2016-08-10 13:10:00 -04:00			`'use strict';`

lighten the load 2018-06-29 03:24:58 -06:00			`var PromiseA;`
			`try {`
			`PromiseA = require('bluebird');`
			`} catch(e) {`
			`PromiseA = global.Promise;`
			`}`

v2.0.0 2016-08-12 03:02:33 -04:00			`// opts.approveDomains(options, certs, cb)`
move approval work to worker 2016-08-10 13:10:00 -04:00			`module.exports.create = function (opts) {`
make spdy optional default, lex => glx, update LICENSE 2018-05-23 03:22:20 -06:00			`// accept all defaults for greenlock.challenges, greenlock.store, greenlock.middleware`
WIP cleanup 2018-08-16 20:45:31 -06:00			`if (!opts._communityPackage) {`
			`opts._communityPackage = 'greenlock-express.js';`
add communityPackageVersion 2018-11-05 11:11:30 -07:00			`opts._communityPackageVersion = require('./package.json').version;`
WIP cleanup 2018-08-16 20:45:31 -06:00			`}`
lex v2.x 2016-08-15 21:15:16 -04:00
WIP cleanup 2018-08-16 20:45:31 -06:00			`function explainError(e) {`
			`console.error('Error:' + e.message);`
			`if ('EACCES' === e.errno) {`
			`console.error("You don't have prmission to access '" + e.address + ":" + e.port + "'.");`
			`console.error("You probably need to use \"sudo\" or \"sudo setcap 'cap_net_bind_service=+ep' $(which node)\"");`
			`return;`
move approval work to worker 2016-08-10 13:10:00 -04:00			`}`
WIP cleanup 2018-08-16 20:45:31 -06:00			`if ('EADDRINUSE' === e.errno) {`
			`console.error("'" + e.address + ":" + e.port + "' is already being used by some other program.");`
			`console.error("You probably need to stop that program or restart your computer.");`
			`return;`
lex v2.x 2016-08-15 21:15:16 -04:00			`}`
WIP cleanup 2018-08-16 20:45:31 -06:00			`console.error(e.code + ": '" + e.address + ":" + e.port + "'");`
			`}`
move approval work to worker 2016-08-10 13:10:00 -04:00
v2.6.4: simplify existing defaults, add default servername support 2018-12-22 07:37:16 -07:00			`function _createPlain(plainPort) {`
WIP cleanup 2018-08-16 20:45:31 -06:00			`if (!plainPort) { plainPort = 80; }`
v2.4.2: .listen() simplified and now handles addresses and sockets 2018-08-18 01:52:32 -06:00
			`var parts = String(plainPort).split(':');`
			`var p = parts.pop();`
			`var addr = parts.join(':').replace(/^\[/, '').replace(/\]$/, '');`
			`var args = [];`
			`var httpType;`
			`var server;`
WIP cleanup 2018-08-16 20:45:31 -06:00			`var validHttpPort = (parseInt(p, 10) >= 0);`

v2.6.4: simplify existing defaults, add default servername support 2018-12-22 07:37:16 -07:00			`if (addr) { args[1] = addr; }`
			`if (!validHttpPort && !/(\/)\|(\\\\)/.test(p)) {`
			`console.warn("'" + p + "' doesn't seem to be a valid port number, socket path, or pipe");`
v2.4.2: .listen() simplified and now handles addresses and sockets 2018-08-18 01:52:32 -06:00			`}`
move approval work to worker 2016-08-10 13:10:00 -04:00
v2.6.4: simplify existing defaults, add default servername support 2018-12-22 07:37:16 -07:00			`server = require('http').createServer(`
			`greenlock.middleware.sanitizeHost(greenlock.middleware(require('redirect-https')()))`
			`);`
			`httpType = 'http';`

v2.6.6: update setSecureContext warning for node < 11.0 only 2018-12-23 12:43:23 -07:00			`return { server: server, listen: function () { return new PromiseA(function (resolve, reject) {`
v2.6.4: simplify existing defaults, add default servername support 2018-12-22 07:37:16 -07:00			`args[0] = p;`
			`args.push(function () {`
			`if (!greenlock.servername) {`
			`if (Array.isArray(greenlock.approvedDomains) && greenlock.approvedDomains.length) {`
			`greenlock.servername = greenlock.approvedDomains[0];`
v2.4.2: .listen() simplified and now handles addresses and sockets 2018-08-18 01:52:32 -06:00			`}`
v2.6.4: simplify existing defaults, add default servername support 2018-12-22 07:37:16 -07:00			`if (Array.isArray(greenlock.approveDomains) && greenlock.approvedDomains.length) {`
			`greenlock.servername = greenlock.approvedDomains[0];`
			`}`
			`}`
bail when no servername is available 2019-04-02 22:54:38 -06:00
v2.6.4: simplify existing defaults, add default servername support 2018-12-22 07:37:16 -07:00			`if (!greenlock.servername) {`
			`resolve(null);`
			`return;`
			`}`
bail when no servername is available 2019-04-02 22:54:38 -06:00
v2.6.4: simplify existing defaults, add default servername support 2018-12-22 07:37:16 -07:00			`return greenlock.check({ domains: [ greenlock.servername ] }).then(function (certs) {`
			`if (certs) {`
			`return {`
			`key: Buffer.from(certs.privkey, 'ascii')`
			`, cert: Buffer.from(certs.cert + '\r\n' + certs.chain, 'ascii')`
			`};`
			`}`
			`console.info("Fetching certificate for '%s' to use as default for HTTPS server...", greenlock.servername);`
			`return new PromiseA(function (resolve, reject) {`
			`// using SNICallback because all options will be set`
			`greenlock.tlsOptions.SNICallback(greenlock.servername, function (err/, secureContext/) {`
			`if (err) { reject(err); return; }`
			`return greenlock.check({ domains: [ greenlock.servername ] }).then(function (certs) {`
			`resolve({`
			`key: Buffer.from(certs.privkey, 'ascii')`
			`, cert: Buffer.from(certs.cert + '\r\n' + certs.chain, 'ascii')`
			`});`
			`}).catch(reject);`
			`});`
			`});`
			`}).then(resolve).catch(reject);`
			`});`
			`server.listen.apply(server, args).on('error', function (e) {`
			`if (server.listenerCount('error') < 2) {`
			`console.warn("Did not successfully create http server and bind to port '" + p + "':");`
			`explainError(e);`
			`process.exit(41);`
			`}`
			`});`
			`}); } };`
			`}`

			`function _create(port) {`
			`if (!port) { port = 443; }`

			`var parts = String(port).split(':');`
			`var p = parts.pop();`
			`var addr = parts.join(':').replace(/^\[/, '').replace(/\]$/, '');`
			`var args = [];`
			`var httpType;`
			`var server;`
			`var validHttpPort = (parseInt(p, 10) >= 0);`
v2.4.2: .listen() simplified and now handles addresses and sockets 2018-08-18 01:52:32 -06:00
			`if (addr) { args[1] = addr; }`
			`if (!validHttpPort && !/(\/)\|(\\\\)/.test(p)) {`
			`console.warn("'" + p + "' doesn't seem to be a valid port number, socket path, or pipe");`
			`}`

v2.6.4: simplify existing defaults, add default servername support 2018-12-22 07:37:16 -07:00			`var https;`
			`try {`
			`https = require('spdy');`
			`greenlock.tlsOptions.spdy = { protocols: [ 'h2', 'http/1.1' ], plain: false };`
			`httpType = 'http2 (spdy/h2)';`
			`} catch(e) {`
			`https = require('https');`
			`httpType = 'https';`
			`}`
			`var sniCallback = greenlock.tlsOptions.SNICallback;`
			`greenlock.tlsOptions.SNICallback = function (domain, cb) {`
			`sniCallback(domain, function (err, context) {`
			`cb(err, context);`
bail when no servername is available 2019-04-02 22:54:38 -06:00
			`if (!context \|\| server._hasDefaultSecureContext) { return; }`
			`if (!domain) { domain = greenlock.servername; }`
			`if (!domain) { return; }`

v2.6.4: simplify existing defaults, add default servername support 2018-12-22 07:37:16 -07:00			`return greenlock.check({ domains: [ domain ] }).then(function (certs) {`
			`// ignore the case that check doesn't have all the right args here`
			`// to get the same certs that it just got (eventually the right ones will come in)`
			`if (!certs) { return; }`
v2.6.6: update setSecureContext warning for node < 11.0 only 2018-12-23 12:43:23 -07:00			`if (server.setSecureContext) {`
			`// only available in node v11.0+`
			`server.setSecureContext({`
			`key: Buffer.from(certs.privkey, 'ascii')`
			`, cert: Buffer.from(certs.cert + '\r\n' + certs.chain, 'ascii')`
			`});`
			`console.info("Using '%s' as default certificate", domain);`
			`} else {`
			`console.info("Setting default certificates dynamically requires node v11.0+. Skipping.");`
			`}`
v2.6.4: simplify existing defaults, add default servername support 2018-12-22 07:37:16 -07:00			`server._hasDefaultSecureContext = true;`
			`}).catch(function (/e/) {`
			`// this may be that the test.example.com was requested, but it's listed`
			`// on the cert for demo.example.com which is in its own directory, not the other`
			`//console.warn("Unusual error: couldn't get newly authorized certificate:");`
			`//console.warn(e.message);`
			`});`
			`});`
			`};`
v2.6.7: do not reset default cert if provided by user 2018-12-23 13:38:32 -07:00			`if (greenlock.tlsOptions.cert) {`
			`server._hasDefaultSecureContext = true;`
			`if (greenlock.tlsOptions.cert.toString('ascii').split("BEGIN").length < 3) {`
			`console.warn("Invalid certificate file. 'tlsOptions.cert' should contain cert.pem (certificate file) and chain.pem (intermediate certificates) seperated by an extra newline (CRLF)");`
			`}`
			`}`
v2.6.4: simplify existing defaults, add default servername support 2018-12-22 07:37:16 -07:00			`server = https.createServer(`
			`greenlock.tlsOptions`
			`, greenlock.middleware.sanitizeHost(function (req, res) {`
			`try {`
			`greenlock.app(req, res);`
			`} catch(e) {`
			`console.error("[error] [greenlock.app] Your HTTP handler had an uncaught error:");`
			`console.error(e);`
			`try {`
			`res.statusCode = 500;`
			`res.end("Internal Server Error: [Greenlock] HTTP exception logged for user-provided handler.");`
			`} catch(e) {`
			`// ignore`
			`// (headers may have already been sent, etc)`
			`}`
			`}`
			`})`
			`);`
			`server.type = httpType;`

			`return { server: server, listen: function () { return new PromiseA(function (resolve) {`
v2.4.2: .listen() simplified and now handles addresses and sockets 2018-08-18 01:52:32 -06:00			`args[0] = p;`
v2.6.4: simplify existing defaults, add default servername support 2018-12-22 07:37:16 -07:00			`args.push(function () { resolve(/server/); });`
v2.4.2: .listen() simplified and now handles addresses and sockets 2018-08-18 01:52:32 -06:00			`server.listen.apply(server, args).on('error', function (e) {`
v2.4.0: listen() now returns secure server instance 2018-08-17 19:58:50 -06:00			`if (server.listenerCount('error') < 2) {`
v2.4.2: .listen() simplified and now handles addresses and sockets 2018-08-18 01:52:32 -06:00			`console.warn("Did not successfully create http server and bind to port '" + p + "':");`
v2.4.0: listen() now returns secure server instance 2018-08-17 19:58:50 -06:00			`explainError(e);`
v2.4.2: .listen() simplified and now handles addresses and sockets 2018-08-18 01:52:32 -06:00			`process.exit(41);`
v2.4.0: listen() now returns secure server instance 2018-08-17 19:58:50 -06:00			`}`
WIP cleanup 2018-08-16 20:45:31 -06:00			`});`
v2.6.4: simplify existing defaults, add default servername support 2018-12-22 07:37:16 -07:00			`}); } };`
WIP cleanup 2018-08-16 20:45:31 -06:00			`}`
very very very nearly complete 2016-08-11 03:07:20 -04:00
improve style 2018-08-22 16:36:33 -06:00			`// NOTE: 'greenlock' is just 'opts' renamed`
WIP cleanup 2018-08-16 20:45:31 -06:00			`var greenlock = require('greenlock').create(opts);`
move approval work to worker 2016-08-10 13:10:00 -04:00
improve style 2018-08-22 16:36:33 -06:00			`if (!opts.app) {`
			`opts.app = function (req, res) {`
			`res.end("Hello, World!\nWith Love,\nGreenlock for Express.js");`
			`};`
			`}`
WIP cleanup 2018-08-16 20:45:31 -06:00
v2.4.2: .listen() simplified and now handles addresses and sockets 2018-08-18 01:52:32 -06:00			`opts.listen = function (plainPort, port, fnPlain, fn) {`
v2.4.0: listen() now returns secure server instance 2018-08-17 19:58:50 -06:00			`var server;`
v2.4.1: allow two function listeners and return server.unecrypted for error listening 2018-08-17 20:43:32 -06:00			`var plainServer;`

add some comments 2018-11-05 06:58:50 +00:00			// If there is only one handler for the `listening` (i.e. TCP bound) event
			`// then we want to use it as HTTPS (backwards compat)`
v2.4.2: .listen() simplified and now handles addresses and sockets 2018-08-18 01:52:32 -06:00			`if (!fn) {`
			`fn = fnPlain;`
			`fnPlain = null;`
v2.4.1: allow two function listeners and return server.unecrypted for error listening 2018-08-17 20:43:32 -06:00			`}`
v2.4.0: listen() now returns secure server instance 2018-08-17 19:58:50 -06:00
v2.6.4: simplify existing defaults, add default servername support 2018-12-22 07:37:16 -07:00			`var obj1 = _createPlain(plainPort, true);`
			`var obj2 = _create(port, false);`
v2.4.0: listen() now returns secure server instance 2018-08-17 19:58:50 -06:00
v2.6.4: simplify existing defaults, add default servername support 2018-12-22 07:37:16 -07:00			`plainServer = obj1.server;`
			`server = obj2.server;`
v2.4.1: allow two function listeners and return server.unecrypted for error listening 2018-08-17 20:43:32 -06:00
v2.6.4: simplify existing defaults, add default servername support 2018-12-22 07:37:16 -07:00			`server.then = obj1.listen().then(function (tlsOptions) {`
			`if (tlsOptions) {`
v2.6.6: update setSecureContext warning for node < 11.0 only 2018-12-23 12:43:23 -07:00			`if (server.setSecureContext) {`
			`// only available in node v11.0+`
			`server.setSecureContext(tlsOptions);`
			`console.info("Using '%s' as default certificate", greenlock.servername);`
			`} else {`
			`console.info("Setting default certificates dynamically requires node v11.0+. Skipping.");`
			`}`
v2.6.4: simplify existing defaults, add default servername support 2018-12-22 07:37:16 -07:00			`server._hasDefaultSecureContext = true;`
v2.4.2: .listen() simplified and now handles addresses and sockets 2018-08-18 01:52:32 -06:00			`}`
v2.6.4: simplify existing defaults, add default servername support 2018-12-22 07:37:16 -07:00			`return obj2.listen().then(function () {`
			`// Report plain http status`
			`if ('function' === typeof fnPlain) {`
			`fnPlain.apply(plainServer);`
			`} else if (!fn && !plainServer.listenerCount('listening') && !server.listenerCount('listening')) {`
			`console.info('[:' + (plainServer.address().port \|\| plainServer.address())`
			`+ "] Handling ACME challenges and redirecting to " + server.type);`
			`}`
v2.4.2: .listen() simplified and now handles addresses and sockets 2018-08-18 01:52:32 -06:00
v2.6.4: simplify existing defaults, add default servername support 2018-12-22 07:37:16 -07:00			`// Report h2/https status`
			`if ('function' === typeof fn) {`
			`fn.apply(server);`
			`} else if (!server.listenerCount('listening')) {`
			`console.info('[:' + (server.address().port \|\| server.address()) + "] Serving " + server.type);`
			`}`
			`});`
			`}).then;`
v2.4.0: listen() now returns secure server instance 2018-08-17 19:58:50 -06:00
v2.4.1: allow two function listeners and return server.unecrypted for error listening 2018-08-17 20:43:32 -06:00			`server.unencrypted = plainServer;`
v2.4.0: listen() now returns secure server instance 2018-08-17 19:58:50 -06:00			`return server;`
move approval work to worker 2016-08-10 13:10:00 -04:00			`};`
improve style 2018-08-22 16:36:33 -06:00			`opts.middleware.acme = function (opts) {`
			`return greenlock.middleware.sanitizeHost(greenlock.middleware(require('redirect-https')(opts)));`
			`};`
			`opts.middleware.secure = function (app) {`
			`return greenlock.middleware.sanitizeHost(app);`
			`};`
lex v2.x 2016-08-15 21:15:16 -04:00
make spdy optional default, lex => glx, update LICENSE 2018-05-23 03:22:20 -06:00			`return greenlock;`
move approval work to worker 2016-08-10 13:10:00 -04:00			`};`