é¦å
å»é¿éäºç³è¯·ååï¼å¹¶å®å认è¯ååï¼å¦åæ æ³è§£æååå°IP
ç§ç¨å½å
æå¡å¨éè¦å¤æ¡ï¼ä¸ä¼ 身份è¯ï¼è´ä¹°é¿éäºå¹å¸ï¼æç
§ï¼å®¡æ ¸ï¼ç¹å«éº»ç¦ï¼ç§ç¨å½å¤çè½ç¶ä¸ç¨å¤æ¡ä½ä»·æ ¼è´µï¼é度æ
¢ï¼è¥å¯ä»¥ç¨èªå·±çç¬è®°æ¬åæå¡å¨çè¯æ¢ä¸éè¦å¤æ¡è¿åç®ï¼ä½ç±äºIP䏿¯åºå®çï¼æ¯æ¬¡æå¨ä¿®æ¹IP太麻ç¦ï¼æå·çµä¿¡å¤§æ¦æ¯æ¯é4天忍3ç¹èªå¨æ´æ¢ä¸æ¬¡IPï¼è¯¥å·¥ç¨å¯ä»¥æ¯é䏿®µæ¶é´èªå¨è·åå
¬ç½IPï¼è¥åç°IPæ¹ååè°ç¨é¿éäºæ¥å£ä¿®æ¹ååIPï¼è¥ä½ çç¬è®°æ¬è¿æ¥çæ¯è·¯ç±å¨ï¼ååªéè¦å»è·¯ç±å¨è®¾ç½®çé¢å¼å¯DMZï¼ipå¡«åä½ çç¬è®°æ¬çå
ç½ipï¼æè
å¼å¯ç«¯å£è½¬åï¼ipå¡«åä½ çç¬è®°æ¬çå
ç½ipï¼å
ç½ç«¯å£å¡«åä½ ç¬è®°æ¬ä¸æå¡å¨çå¬ç端å£ï¼è¥ä½¿ç¨httpsçè¯å¤ç½ç«¯å£å¡«å443ï¼å½ç¶ä¹å¯ä»¥å¡«åé¤80ï¼8080以å¤ç端å£ã
ä¿®æ¹
AutoBandDomain.DOMAIN
å
AutoBandDomain.SUB_DOMAIN
ä¸ºä½ çåå
ä¿®æ¹
BandDomain.IDåBandDomain.SECRET
ä¸ºä½ çé¿éäº
Access Key ID
å
Access Key Secret
(å¦ä½è·åAccess Key IDåAccess Key Secretè§ä¸æ)
macålinuxç¨æ·å½ä»¤çªå£åæ¢ç®å½å°å·¥ç¨è·ç®å½ï¼è¿è¡
run.sh
ï¼windowsç¨æ·åå»
run_wind.bat
å³å¯
å½ç¶ä¹å¯ä»¥æä»£ç å¤å¶å°eclipseçjavaç¼è¾å¨ä¸ï¼åæ¶å å
¥
commons-codec-1.10.jar
å
gson-2.8.1.jar
ä¾èµåè¿è¡
AutoBandDomain
éè¦å®è£
JDKï¼
ä¸è½½å°å
建议代ç ç¼ç éç¨utf8
æ¯æmacålinuxï¼windowsææªæµè¯
䏿¯æopenJDKï¼è¥ä¸å®è¦ä½¿ç¨openJDKå¯ä»¥æ
HttpRequest
ä¸
HttpURLConnection
æ¿æ¢æå
¶ä»httpåºï¼æ¯å¦
okhttp
æç
§ä¸è¿°æä½åä½ çåå就解æå°ä½ çç¬è®°æ¬çå
¬ç½IPäºï¼è¥ä½ çç¬è®°æ¬æ²¡æç´æ¥è¿æ¥å
¬ç½ï¼èæ¯è¿æ¥äºè·¯ç±å¨çè¯ï¼å¯ä»¥å¨è·¯ç±å¨ç®¡ç页é¢å¼å¯DMZæè
端å£è½¬åï¼è¿æ ·å³ä½¿ä½ å¨å
ç½ï¼å¤ç½ä¸çç¨æ·éè¿ååä¹è½è®¿é®å°ä½ äºï¼é æè·¯ç±è®¾ç½®æ¹å¼ï¼å
¶ä»è·¯ç±å¨ç¥æä¸åã
æçç¬è®°æ¬çå
ç½IPæ¯
192.168.199.249
ï¼æçç¬è®°æ¬ä¸çtomcatæå¡å¨çå¬çç«¯å£æ¯
8443
ï¼åªè¦å¤ç½ç¨æ· 访é®
http://ä½ çåå:443
å°±å¯ä»¥è¯·æ±å°ä½ çtomcatæå¡å¨äºï¼å¦å¤æè¿è®¾ç½®äº1024ç«¯å£æ å°å°è·¯ç±å¨ç80端å£ï¼è¿æ ·æå°±å¯ä»¥è¿ç¨ç»å½æçè·¯ç±å¨äºã
ç±äºè¿è¥åå°éäº80å8080端å£ï¼æä»¥å¤ç½ç¨æ·æ²¡æ³éè¿httpé»è®¤ç80端å£è¿è¡è®¿é®ï¼æä»¥åªè½éè¿é80ï¼8080端å£è¿è¡è®¿é®ãè¥ä¸å®è¦éè¿é»è®¤ç«¯å£çå¯å¯ä»¥åè䏿
é
ç½®Tomcatï¼å¼å¯https
httpsé»è®¤éç¨443端å£ï¼è¿ä¸ªç«¯å£æ²¡æè¢«è¿è¥åå°éï¼åªè¦æä»¬çæå¡å¨å¼å¯httpsçè¯å¤ç½ç¨æ·å°±å¯ä»¥éè¿
https://ä½ çåå
è¿è¡è®¿é®äºï¼å¼å¯httpséè¦SSLè¯ä¹¦ï¼ä½ å¯ä»¥èªå·±çæSSLè¯ä¹¦ï¼ä½æµè§å¨ä¼æç¤ºSSLè¯ä¹¦æé®é¢ï¼æææä»¬å¯ä»¥å»ç¬¬ä¸æ¹ç³è¯·å
è´¹çSSLè¯ä¹¦ï¼æ¯å¦ è
¾è®¯äº æè
é¿éäºççã
以è
¾è®¯äºä¸ºä¾ï¼é¦å
è¿å
¥
console.qcloud.com/ssl
ï¼ç¶åç¹å»ç³è¯·è¯ä¹¦
æç
§æç¤ºå¡«å åååç§é¥å¯ç ï¼æäº¤åä¼ç«å³çæè¯ä¹¦ï¼å¯ä»¥ä¸è½½ä¸æ¥æ¾å°tomcatæå¡å¨ç®å½ä¸ï¼å¦ææ²¡æå¡«åç§é¥å¯ç ï¼å䏿ä¾Tomcatè¯ä¹¦æä»¶çä¸è½½ï¼éè¦ç¨æ·æå¨è½¬æ¢æ ¼å¼çæã
å¯ä»¥éè¿ Nginx æä»¶å¤¹å
è¯ä¹¦æä»¶åç§é¥æä»¶çæjksæ ¼å¼è¯ä¹¦
转æ¢å·¥å
·ï¼
www.trustasia.com/tools/cert-â¦
使ç¨å·¥å
·æ¶æ³¨æå¡«å å¯é¥åºå¯ç ï¼å®è£
è¯ä¹¦æ¶é
ç½®æä»¶ä¸éè¦å¡«åã
以 tomcat7为ä¾
é
ç½®SSLè¿æ¥å¨ï¼å°ä¸è½½ç
ä½ çåå.jks
æä»¶åæ¾å°tomcatä¸çconfç®å½ä¸ï¼ç¶åé
ç½®åç®å½ä¸çserver.xmlæä»¶ï¼
<Connector port="443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
keystoreFile="conf\ä½ çåå.jks"
keystorePass="ç³è¯·è¯ä¹¦æ¶çç§é¥"
clientAuth="false" sslProtocol="TLS" />
å¤å¶ä»£ç
å¯éé
ç½®
httpèªå¨è·³è½¬httpsçå®å
¨é
ç½®
å°confç®å½ä¸çweb.xmlãå¨
</welcome-file-list>
åé¢ï¼
</web-app>
ï¼ä¹å°±æ¯åæ°ç¬¬äºæ®µéï¼å ä¸è¿æ ·ä¸æ®µ
<web-resource-collection >
<web-resource-name >SSL</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
å¤å¶ä»£ç
è¿æ¥ç®çæ¯è®©ésslçconnector跳转å°sslçconnectorå»ãæä»¥è¿éè¦åå¾server.xmlè¿è¡é
ç½®ï¼
<Connector port="8080" protocol="HTTP/1.1"
connectionTimeout="20000"
redirectPort="443" />
å¤å¶ä»£ç
redirectPortæ¹æsslçconnectorç端å£443ï¼éå¯å便ä¼çæã
é
ç½®å®åéå¯tomcatå³å¯çæï¼è¥æ æ³éè¿https访é®å¯æ¥ç
tomcat/log/catalina.yyyy-mm-dd.log
æ¥å¿æä»¶
è¥ä½¿ç¨ApacheãIISãNginx æå¡å¨å¯ä»¥åè
www.qcloud.com/document/prâ¦
å¦ä½è·åAccess Key IDåAccess Key Secret ï¼
ç»å½é¿éäºï¼ç¹å»æ§å¶å°ï¼é¼ æ ç§»å¨å°ç¨æ·åä¸ä¼å¼¹åºå¦ä¸çªå£ï¼ç¹å» accesskeys å³å¯çå°Access Key IDåAccess Key Secret
代ç å°å https://github.com/android-notes/personalServer