$ brew install nginx$ vim /usr/local/etc/nginx/nginx.confChange the content of the file to:
worker_processes 1;
events {
worker_connections 1024;
}
http {
keepalive_timeout 0;
# Change this ports to your dev servers
map $host $port {
default 3000;
cti.lvh.me 3001;
}
server {
listen 443 ssl;
server_name *.lvh.me;
ssl_certificate lvh.cert;
ssl_certificate_key lvh.key;
ssl_session_cache shared:SSL:1m;
ssl_session_timeout 15m;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;
rewrite_log on;
location / {
proxy_pass http://127.0.0.1:$port;
proxy_set_header Accept-Encoding "";
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
add_header Front-End-Https on;
}
}
include servers/*;
}
Go to http://www.selfsignedcertificate.com/ and input *.lvh.me as the server name.
After generating the certificate files run the following commands in your shell:
$ cd /usr/local/etc/nginx
$ curl <LINK_TO_YOUR_KEY_FILE>/_.lvh.me.key > lvh.key
$ curl <LINK_TO_YOUR_CERT_FILE>/_.lvh.me.cert > lvh.certUpdate: Generate self signed certificate with Subject Alternative Name in OS X. SAN is a Chrome requirement
openssl req -newkey rsa:4096 -keyout lvh.key -x509 -nodes -new -out lvh.cert -subj "/CN=*.lvh.me" -reqexts SAN -extensions SAN -config <(cat /System/Library/OpenSSL/openssl.cnf <(printf '[SAN]\nsubjectAltName=DNS:lvh.me,DNS:*.lvh.me')) -sha256 -days 365
$ sudo nginx
In case you need to edit nginx.conf reload your configuration:
$ sudo nginx -s reload
Add the certificate to Keychain Access and set the Trust Policy to Always Trust.
