Introduced TLS Support (crossbario#361)

johannwagner · oberstet · commit 6aacb16e490a · 2018-06-26T22:04:05.000+02:00
* Introduced TLS Support

* Fixed Documentation.
diff --git a/doc/reference.md b/doc/reference.md
@@ -216,6 +216,7 @@ Options that define **Custom error handlers:**
     - when a protocol violation is occured,
     - when no `onchallenge` defined, but a challenge request is received due to authenticate the client,
 
+
 ```javascript
     var connection = new autobahn.Connection({
        on_user_error: function (error, customErrorMessage) {
@@ -240,7 +241,13 @@ Options that define **Custom error handlers:**
 > In a case of error handling in the Callee role, when the invocation handler is executed, the error
 > is reported on the Callee side (with the custom error handler or an error log), but despite that the
 > error is sent back to the Dealer, and the Caller will receive a `runtime.error` wamp message.
-  
+
+
+ Options that control **tls connection**:
+ -   `tlsConfiguration`: *object*
+     - `ca`: *Buffer | String* - CA
+     - `cert`: *Buffer | String* - Certificate Public Key
+     - `key`: *Buffer | String* - Certificate Private Key
   
 Connection Properties
 ---------------------
diff --git a/lib/connection.js b/lib/connection.js
@@ -73,7 +73,8 @@ var Connection = function (options) {
       self._options.transports = [
          {
             type: 'websocket',
-            url: self._options.url
+            url: self._options.url,
+            tlsConfiguration: self._options.tlsConfiguration
          }
       ];
    }
diff --git a/lib/transport/websocket.js b/lib/transport/websocket.js
@@ -97,7 +97,17 @@ Factory.prototype.create = function () {
                protocols = protocols.join(',');
             }
             options.protocol = protocols;
-         } 
+         }
+
+         if (self._options.url.startsWith('wss://')) {
+            // Using TLS
+            // Only using the known working flags in the options.
+            // https://nodejs.org/api/https.html#https_https_request_options_callback
+            options.ca = self._options.tlsConfiguration.ca;
+            options.cert = self._options.tlsConfiguration.cert;
+            options.key = self._options.tlsConfiguration.key;
+            options.rejectUnauthorized = false;
+         }
          
          websocket = new WebSocket(self._options.url, protocols, options);
 

Original file line number	Diff line number	Diff line change
`@@ -73,7 +73,8 @@ var Connection = function (options) {`
`73`	`73`	`self._options.transports = [`
`74`	`74`	`{`
`75`	`75`	`type: 'websocket',`
`76`		`- url: self._options.url`
	`76`	`+ url: self._options.url,`
	`77`	`+ tlsConfiguration: self._options.tlsConfiguration`
`77`	`78`	`}`
`78`	`79`	`];`
`79`	`80`	`}`