How to set https in golang

With the development of the Internet, HTTPS has become an important part of modern web applications. It can not only ensure the safe transmission of data, but also improve the security and reliability of web pages, which is very important for any web application. Golang is a programming language that has become very popular in recent years, and its built-in network library can easily support HTTPS.

So, how to set up HTTPS in Golang?

1. Generate certificate and key

First, we need to generate SSL certificate and key files. You can use the OpenSSL tool to generate it. The specific command is as follows:

openssl req -x509 -newkey rsa:4096 -keyout key.pem -out cert.pem -days 365 -nodes

This command will Generate an RSA encryption type certificate and private key files key.pem and cert.pem that are valid for 365 days.

2. Writing code

In Golang, setting up HTTPS using TLS (Transport Layer Security) is very simple. The following is a sample code, including server and client:

package main

import (
  "fmt"
  "log"
  "net/http"
)

func handler(w http.ResponseWriter, r *http.Request) {
    fmt.Fprintf(w, "Hello, HTTPS!")
}

func main() {
    http.HandleFunc("/", handler)

    server := &http.Server{
        Addr: ":8080",
    }

    err := server.ListenAndServeTLS("cert.pem", "key.pem")
    if err != nil {
        log.Fatal("ListenAndServeTLS: ", err)
    }
}

In this sample code, first we define an HTTP processor to handle HTTP requests. Then, we define an HTTP server and its listening address. By setting the first parameter of the ListenAndServeTLS() method to the certificate file path and the second parameter to the key file path, we tell Golang that we want to listen to HTTPS connections instead of HTTP connections.

For client connections, you only need to specify the URL starting with https://:

package main

import (
  "fmt"
  "log"
  "net/http"
)

func main() {
    response, err := http.Get("https://localhost:8080/")
    if err != nil {
        log.Fatal("Get: ", err)
    }

    defer response.Body.Close()

    body, err := ioutil.ReadAll(response.Body)
    if err != nil {
        log.Fatal("ReadAll: ", err)
    }

    fmt.Println(string(body))
}

In this sample code, we use the http.Get() method to obtain http:// The content of localhost:8080/, because we set up the SSL certificate and key, actually obtains the content of https://localhost:8080/.

3. Precautions

When using Golang to set up HTTPS, you need to pay attention to the following points:

1. When generating certificates and keys, you need to ensure that the certificate The domain name must be consistent with the domain name of the server (or client), otherwise the SSL/TLS handshake will fail;
2. If you use a self-signed certificate, the client needs to install the certificate and add it to the trust list . Otherwise, the client will receive an untrusted certificate error;
3. To better protect data security, we recommend using modern TLS protocol versions (such as TLS 1.3) and disabling older security protocol versions (such as SSLv3).

Summary

Through the introduction of this article, I believe you already understand how to set up HTTPS in Golang. When we need to send data to the outside, the confidentiality and integrity of the data are very important, and HTTPS is the technology that can guarantee these two aspects. Therefore, whether you are building a web application or developing network connections, setting up HTTPS with Golang is a wise choice.

The above is the detailed content of How to set https in golang. For more information, please follow other related articles on the PHP Chinese website!