Mac OS X EI Captitan 配置 Apache https 网站 & 发布 ios 企业级APP(Enterprise) 详细操作流程如下:
====================================https网站搭建=============================================
1. 生成主机私钥
mkdir /private/etc/apache2/ssl
cd /private/etc/apache2/ssl
sudo openssl genrsa -out server.key 1024
2. 生成证书请求文件 (注意事项:common name 必须用服务器ip或域名)
sudo openssl req -new -key server.key -out server.csr -config /System/Library/OpenSSL/openssl.cnf
3. 生成ssl证书
用上一步生成的文件生成ssl证书
sudo openssl genrsa -out ca.key 1024
4.生成给网站ssl证书(注意事项:和之前输入保持一致)
sudo openssl req -new -x509 -days 3650 -key ca.key -out ca.crt -config /System/Library/OpenSSL/openssl.cnf
到这里,自签名证书就生成好了,下面就开始配置Apache
3. 修改apache 配置文件httpd.conf , httpd-ssl.conf , httpd-vhosts.conf
sudo vi /etc/apache2/httpd.conf
/private/etc/apache2/httpd.conf , 编辑这个文件去掉下面三行前面的 '#'
LoadModule ssl_module libexec/apache2/mod_ssl.so
Include /private/etc/apache2/extra/httpd-ssl.conf
Include /private/etc/apache2/extra/httpd-vhosts.conf
sudo vi /private/etc/apache2/extra/httpd-ssl.conf
/private/etc/apache2/extra/httpd-ssl.conf ,编辑这个文件去掉下面两行前面的 '#'
SSLCertificateFile "/private/etc/apache2/ssl/server.crt"
SSLCertificateKeyFile "/private/etc/apache2/ssl/server.key"
找到 ServerName 得下一行添加 ServerName localhost:80
修改为Require all granted 如下:
<Directory />
# AllowOverride none (使用#屏蔽)
# Require all denied
Require all granted , 开通访问权限
</Directory>
sudo vi /etc/apache2/extra/httpd-vhosts.conf
/private/etc/apache2/extra/httpd-vhosts.conf ,编辑这个文件在 'NameVirtualHost * :80' 后面添加:
在文件末尾添加:
<VirtualHost *:443>
SSLEngine on
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile "/private/etc/apache2/ssl/server.crt"
SSLCertificateKeyFile "/private/etc/apache2/ssl/server.key"
ServerName localhost
DocumentRoot "/Website/Root"
</VirtualHost>
修改VirtualHost 中80端口 2 段内容都为如下:(修改DocumentRoot和ServerName)
<VirtualHost *:80>
ServerAdmin webmaster@dummy-host2.example.com
DocumentRoot "/WebSite/Root"
ServerName localhost
ErrorLog "/private/var/log/apache2/dummy-host2.example.com-error_log"
CustomLog "/private/var/log/apache2/dummy-host2.example.com-access_log" common
</VirtualHost>
4.创建/Website/Root目录 sudo mkdir /Website/Root
6. 到这里就配置完了,检查配置,没问题的话重启Apache就好了
sudo apachectl configtest 检查配置
sudo apachectl -k restart 强制重启
sudo apachectl -k stop 关闭apache
在chrome 中浏览
http://localhost/ , http://10.248.173.85/ ,https://localhost/ , https://10.248.173.85/
====================================app下载配置=============================================
1.将ca.crt 复制到/WebSite/Root目录下 ; 复制index.html,app.html,app.plist,app.ipa 也到该目录下并修改 everyone 为只读权限
2.app.html 格式
<a href="https://10.248.173.85/ca.crt">Cert Download</a>
<a href="itms-services://?action=download-manifest&url=https://10.248.173.85/JLCommunity.plist"><span class="s4"> APP Download(iOS7+) <span class="Apple-converted-space"> </span></span></a>
3.app.plist格式
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
<key>items</key>
<array>
<dict>
<key>assets</key>
<array>
<dict>
<key>kind</key>
<string>software-package</string>
<key>url</key>
<string>https://10.248.173.85/app.ipa</string>
</dict>
</array>
<key>metadata</key>
<dict>
<key>bundle-identifier</key>
<string>com.mycom.it.app.v1</string>
<key>bundle-version</key>
<string>1.0</string>
<key>kind</key>
<string>software</string>
<key>title</key>
<string>app</string>
</dict>
</dict>
</array>
</dict>
</plist>
====================================注意事项=============================================
1. 附加操作&注意事项:
vi 编辑器使用
vi编辑.按esc后,按u可以复原
按esc 退出编辑.输入:w 回车 保存
:x 退出vi
:q 退出vi
:wq 保存退出
VI 中 输入/ 进行搜索 按n搜索下一个.按?搜索上一个
linux 显示当前路径命令 pwd
移除目标路径命令 rm -r /testDirectory
登出终端机命令 logout
给文件夹最高权限命令 chmod -R 777 /WebSite/Root
====================================https网站搭建=============================================
1. 生成主机私钥
mkdir /private/etc/apache2/ssl
cd /private/etc/apache2/ssl
sudo openssl genrsa -out server.key 1024
2. 生成证书请求文件 (注意事项:common name 必须用服务器ip或域名)
sudo openssl req -new -key server.key -out server.csr -config /System/Library/OpenSSL/openssl.cnf
3. 生成ssl证书
用上一步生成的文件生成ssl证书
sudo openssl genrsa -out ca.key 1024
4.生成给网站ssl证书(注意事项:和之前输入保持一致)
sudo openssl req -new -x509 -days 3650 -key ca.key -out ca.crt -config /System/Library/OpenSSL/openssl.cnf
到这里,自签名证书就生成好了,下面就开始配置Apache
3. 修改apache 配置文件httpd.conf , httpd-ssl.conf , httpd-vhosts.conf
sudo vi /etc/apache2/httpd.conf
/private/etc/apache2/httpd.conf , 编辑这个文件去掉下面三行前面的 '#'
LoadModule ssl_module libexec/apache2/mod_ssl.so
Include /private/etc/apache2/extra/httpd-ssl.conf
Include /private/etc/apache2/extra/httpd-vhosts.conf
sudo vi /private/etc/apache2/extra/httpd-ssl.conf
/private/etc/apache2/extra/httpd-ssl.conf ,编辑这个文件去掉下面两行前面的 '#'
SSLCertificateFile "/private/etc/apache2/ssl/server.crt"
SSLCertificateKeyFile "/private/etc/apache2/ssl/server.key"
找到 ServerName 得下一行添加 ServerName localhost:80
修改为Require all granted 如下:
<Directory />
# AllowOverride none (使用#屏蔽)
# Require all denied
Require all granted , 开通访问权限
</Directory>
sudo vi /etc/apache2/extra/httpd-vhosts.conf
/private/etc/apache2/extra/httpd-vhosts.conf ,编辑这个文件在 'NameVirtualHost * :80' 后面添加:
在文件末尾添加:
<VirtualHost *:443>
SSLEngine on
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile "/private/etc/apache2/ssl/server.crt"
SSLCertificateKeyFile "/private/etc/apache2/ssl/server.key"
ServerName localhost
DocumentRoot "/Website/Root"
</VirtualHost>
修改VirtualHost 中80端口 2 段内容都为如下:(修改DocumentRoot和ServerName)
<VirtualHost *:80>
ServerAdmin webmaster@dummy-host2.example.com
DocumentRoot "/WebSite/Root"
ServerName localhost
ErrorLog "/private/var/log/apache2/dummy-host2.example.com-error_log"
CustomLog "/private/var/log/apache2/dummy-host2.example.com-access_log" common
</VirtualHost>
4.创建/Website/Root目录 sudo mkdir /Website/Root
6. 到这里就配置完了,检查配置,没问题的话重启Apache就好了
sudo apachectl configtest 检查配置
sudo apachectl -k restart 强制重启
sudo apachectl -k stop 关闭apache
在chrome 中浏览
http://localhost/ , http://10.248.173.85/ ,https://localhost/ , https://10.248.173.85/
====================================app下载配置=============================================
1.将ca.crt 复制到/WebSite/Root目录下 ; 复制index.html,app.html,app.plist,app.ipa 也到该目录下并修改 everyone 为只读权限
2.app.html 格式
<a href="https://10.248.173.85/ca.crt">Cert Download</a>
<a href="itms-services://?action=download-manifest&url=https://10.248.173.85/JLCommunity.plist"><span class="s4"> APP Download(iOS7+) <span class="Apple-converted-space"> </span></span></a>
3.app.plist格式
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
<key>items</key>
<array>
<dict>
<key>assets</key>
<array>
<dict>
<key>kind</key>
<string>software-package</string>
<key>url</key>
<string>https://10.248.173.85/app.ipa</string>
</dict>
</array>
<key>metadata</key>
<dict>
<key>bundle-identifier</key>
<string>com.mycom.it.app.v1</string>
<key>bundle-version</key>
<string>1.0</string>
<key>kind</key>
<string>software</string>
<key>title</key>
<string>app</string>
</dict>
</dict>
</array>
</dict>
</plist>
====================================注意事项=============================================
1. 附加操作&注意事项:
vi 编辑器使用
vi编辑.按esc后,按u可以复原
按esc 退出编辑.输入:w 回车 保存
:x 退出vi
:q 退出vi
:wq 保存退出
VI 中 输入/ 进行搜索 按n搜索下一个.按?搜索上一个
linux 显示当前路径命令 pwd
移除目标路径命令 rm -r /testDirectory
登出终端机命令 logout
给文件夹最高权限命令 chmod -R 777 /WebSite/Root