Create a Basic HTTPS Server (using TLS)

Dec 21, 2018 · 227 words · 2 minutes read

#https #tls #certificates #self-sign #rsa #sha #server #connection

This post isn’t about the benefits or why you should be using https, instead it’s just about how to setup and use it with a basic Go web server. Compared with a basic http server there are two main differences. Firstly we need to generate some certificates and secondly we need to change our code to use the certificates and communicate over a TLS connection.

Step 1: Commands to make self-signed certificates

openssl genrsa -out https-server.key 2048

openssl ecparam -genkey -name secp384r1 -out https-server.key

Finally self-sign the certificate and specify information like country, name and email:

openssl req -new -x509 -sha256 -key https-server.key -out https-server.crt -days 3650

Step 2: Update our Go Code

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27


package main

import (
    "io"
    "log"
    "net/http"
)

func main() {

    http.HandleFunc("/", ExampleHandler)

    log.Println("** Service Started on Port 8080 **")

    // Use ListenAndServeTLS() instead of ListenAndServe() which accepts two extra parameters. 
    // We need to specify both the certificate file and the key file (which we've named 
    // https-server.crt and https-server.key).
    err := http.ListenAndServeTLS(":8080", "https-server.crt", "https-server.key", nil);
    if err != nil {
        log.Fatal(err)
    }
}

func ExampleHandler(w http.ResponseWriter, r *http.Request) {
    w.Header().Add("Content-Type", "application/json")
    io.WriteString(w, `{"status":"ok"}`)
}

Note: remember to actually connect to it over https, e.g. https://localhost:8080

See something which isn't right? You can contribute to this page on GitHub or just let us know in the comments below - Thanks for reading!

Related Posts

Author: Edd Turtle