- step 1 2018.11.5
- 小程序信息:补充小程序的基本信息,如名称、图标、描述等 √
- 添加开发者 : 添加开发者,进行代码上传 √
- 在开发设置页面查看AppID和AppSecret,配置服务器域名 50%
- 阿里云购买云服务器 ECS √
- 阿里云购买域名 √
- SSL证书签发 √
明日计划:服务器环境搭建+域名申请备案
- 2018.11.6
- 服务器环境搭建 √
- JDK安装看这里Linux安装JDK
- tomcat安装
- 域名申请备案 √
#java ENV
vi /etc/profile
JAVA_HOME=/usr/dev/jdk/jdk1.8.0_191
PATH=/usr/dev/jdk/jdk1.8.0_191/bin:$PATH
CLASSPATH=.:/usr/dev/jdk/jdk1.8.0_191/lib/dt.jar:/usr/dev/jdk/jdk1.8.0_191/lib/tools.jar
export JAVA_HOME PATH CLASSPATH
[root@localhost ~]# java -version
java version "1.8.0_191"
Java(TM) SE Runtime Environment (build 1.8.0_191-b12)
Java HotSpot(TM) 64-Bit Server VM (build 25.191-b12, mixed mode)
#tomcat 配置及启动
[root@localhost ~]# tar zxvf apache-tomcat-8.5.34.tar.gz -C /usr/dev/tomcat/
[root@localhost ~]# cd /usr/dev/tomcat/apache-tomcat-8.5.34/bin/
[root@localhost bin]# vi setclasspath.sh
export JAVA_HOME=/usr/dev/jdk/jdk1.8.0_191
export JRE_HOME=/usr/dev/jdk/jdk1.8.0_191/jre
[root@localhost bin]# ./startup.sh
Using CATALINA_BASE: /usr/dev/tomcat/apache-tomcat-8.5.34
Using CATALINA_HOME: /usr/dev/tomcat/apache-tomcat-8.5.34
Using CATALINA_TMPDIR: /usr/dev/tomcat/apache-tomcat-8.5.34/temp
Using JRE_HOME: /usr/dev/jdk/jdk1.8.0_191/jre
Using CLASSPATH: /usr/dev/tomcat/apache-tomcat-8.5.34/bin/bootstrap.jar:/usr/dev/tomcat/apache-tomcat-8.5.34/bin/tomcat-juli.jar
Tomcat started.
- 阿里云添加 安全组规则 8080/8080
访问 公网id xxx:8080
-
Tomcat服务器安装SSL证书
pfx转jks时在linux 环境里报错 java.io.IOException: DerInputStream.getLength(): lengthTag=109, too big.
Windows环境OK,邪门了
[root@localhost ~]# keytool -importkeystore -srckeystore cert-1541407285713_.cn.pfx -destkeystore cert-1541407285713_.cn.jks -srcstoretype PKCS12 -deststoretype JKS
Importing keystore cert-1541407285713_.cn.pfx to cert-1541407285713_.cn.jks...
Enter destination keystore password:
Re-enter new password:
Enter source keystore password:
keytool error: java.io.IOException: DerInputStream.getLength(): lengthTag=109, too big.
[root@localhost ~]#
C:\DEV\jdk1.8.0_131\bin>keytool -importkeystore -srckeystore cert-1541407285713
qianqianchen.cn.pfx -destkeystore cert-1541407285713_.cn.jks -srcst
retype PKCS12 -deststoretype JKS
Enter destination keystore password:
Re-enter new password:
Enter source keystore password:
Entry for alias alias successfully imported.
Import command completed: 1 entries successfully imported, 0 entries failed or
cancelled
[root@localhost ~]# cd /usr/dev/tomcat/apache-tomcat-8.5.34/conf/
[root@localhost conf]# vi server.xml
<Connector port="8443"
protocol="HTTP/1.1"
SSLEnabled="true"
scheme="https"
secure="true"
keystoreFile="cert/cert-aaa.cn.pfx"
keystoreType="PKCS12"
keystorePass="xxxxx"
clientAuth="false"
SSLProtocol="TLSv1+TLSv1.1+TLSv1.2"
ciphers="TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,TLS_RSA_WITH_AES_128_CBC_SHA256,TLS_RSA_WITH_AES_256_CBC_SHA256"/>
keystoreFile="cert/cert-aaa.jks"
keystorePass="xxxx"
将8443/8443 加入安全组
- 云解析DNS- 域名解析-添加记录,
将http(80)加入安全组
网站备案申请提交,初审已完成,待邮寄幕布拍照片