Added https support for trunk serve.

[murosuke]

This allows users to serve with https. To enable this, add path to the cert files as below in Trunk.toml. If it failed to read cert files, it will start in http as usual.

[serve]
crt = "./server.crt"
key = "./server.key"

Checklist

• Updated CHANGELOG.md describing pertinent changes.
• Updated README.md with pertinent info (may not always apply).
• Updated site content with pertinent info (may not always apply).
• Squash down commits to one or two logical commits which clearly describe the work you've done. If you don't, then Dodd will 🤓.

[peteringram0]

Hi, Is there anyway to try this before it gets merged at all?

[simbleau]

do not bump the version

[murosuke]

I reverted version.

[simbleau]

Should this come before the tracing log?

[murosuke]

Changed comment position just before server.await.

[simbleau]

Use Option<PathBuf> or OsStr for these types

[murosuke]

Wrapped key/crt member with Option.

[simbleau]

Please add an example with HTTPS, so we may test this.

[murosuke]

@simbleau Thankyou for reviewing. I made a sample here.
I checked in windows.

run sample as https

• Create key and crt pair with openssl(without encrypt).
  openssl req -x509 -new -keyout server.key -out server.crt -days 365
• Place server.key and server.crt under the yew folder.
• Add localhost as another domain in hosts file to prevents browsers from operating in trust mode.(Secure context WebAPI like showOpenFilePicker works with HTTP localhost, when usually should only work with HTTPS.)
  127.0.0.1 server.my
  • windows
    • C:\Windows\System32\drivers\etc\hosts
  • linux
    • /etc/hosts
• Run yew with merged trunk.
  trunk serve
• Access https://server.my:8080 with browser.
  If it is operating successfully, opening file picker should work(this won't work when accessing http://server.my:8080 running with trunk before merge).

[murosuke]

@peteringram0 Sorry for the late reply.
You can clone original trunk, create branch and easly build it.
git fetch origin pull/458/head:PR-458
git checkout PR-458
cargo build
After build, trunk binary will be generated at target/target/debug/trunk.exe(I checked in windows).
Use target/target/debug/trunk.exe with project you are using trunk with.

[lpotthast]

Is it possible to assist here?

[lpotthast]

Note that this development version can also be installed using:

cargo install --git https://github.com/murosuke/trunk --branch develop trunk

[lpotthast]

Note: I can not close the dev-server using Ctrl-C. Is the signal correctly handled? I am using an M1 mac, Trunk config contains an active proxy section.

Also worth noting: I generated a self-signed certificate using a custom ca. That ca is part of my machines keychain. Chrome accepts the generated certificate perfectly. But: I had to set insecure = true in Trunk.tomls [[proxy]] section for communicating with my backend service (axum running in https locally using the same cert). Is Trunk using the systems CA store properly? I had not anticipated that this option would become necessary..

[thedodd]

One item so far, I'll finish up review on src/serve.rs shortly.

[thedodd]

Let's add these to an arg group to ensure that it is clear to users that both must be declared together.

[rogusdev]

Also worth noting: I generated a self-signed certificate using a custom ca. That ca is part of my machines keychain. Chrome accepts the generated certificate perfectly. But: I had to set insecure = true in Trunk.tomls [[proxy]] section for communicating with my backend service

Self signed certificates are officially invalid, by definition, and need insecure acceptance, for sure.

[github-actions]

This PR is stale because it has been open 45 days with no activity. Remove stale label or comment or this will be closed in 10 days.

[github-actions]

This PR was closed because it has been stalled for 10 days with no activity.

[ctron]

I do believe this was part of trunk-ng. With the merge of trunk-ng into trunk as part of PR #623, that should be part of the next trunk release. If that's not the case, please let us know.