问题描述
我需要了解一个Web应用程序如何使用HTTPS。但我真的找不到有关它的更多信息。我试图设置我的本地Apache,但我找不到CA autorithy签署我的证书...提示?建议?
I need to see how a web application will work with HTTPS. But I can't really find much information around about it. I tried to set up my local Apache but I can't find a CA autorithy to sign my certificate... Hints? Suggestions?
推荐答案
考虑的可能性是:
- 生成您自己的证书(自签名证书)
- 获取由已知颁发者颁发的证书
- 获取由发行人未被浏览器识别
Nr。 1可能是最广泛使用的解决方案。您可以在找到相关说明。唯一的缺点是浏览器会抱怨未知的CA.在Firefox中,您只需添加一个永久异常并消除警告。 (Chrome和Internet Explorer似乎都不提供这样的选项。)
Nr. 1 is probably the most widely used solution. You can find instructions here. The only disadvantage is that browsers will complaint about the unknown CA. In Firefox, you can just add a permanent exception and get rid of the warning. (Neither Chrome nor Internet Explorer seem to provide such option.)
Nr。 2通常需要花钱,所以它不适合开发环境。
Nr. 2 normally costs money so it isn't a popular choice for dev environments.
Nr。 3可以免费获得(参见)但它们也会触发浏览器警告。与nr的区别。 1是您可以将CA添加到浏览器的受信任机构;然而,由于其安全隐患,这是一个需要认真考虑的严肃决定。一般来说,我不建议仅仅进行测试。
Nr. 3 can be obtained for free (see https://www.cacert.org/) but they also trigger a browser warning. A difference with nr. 1 is that you have the possibility of adding the CA to your browser's trusted authorities; however, that's a serious decision that requires serious consideration because of its security implications. In general, I would not recommend it for mere testing.
这篇关于如何为本地测试目的设置HTTPS?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!