Forem: Allan The latest articles on Forem by Allan (@substrsensei). https://forem.com/substrsensei https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F143573%2F5b875d53-961e-4799-9147-b04fd486c030.JPG Forem: Allan https://forem.com/substrsensei en Cheat Sheet: Enabling HTTPS on a Fresh Laravel Sail App with MacOS Allan Thu, 24 Oct 2024 06:25:15 +0000 https://forem.com/substrsensei/cheat-sheet-enabling-https-on-a-fresh-laravel-sail-app-with-macos-gdm https://forem.com/substrsensei/cheat-sheet-enabling-https-on-a-fresh-laravel-sail-app-with-macos-gdm <p>When developing <strong>Laravel applications locally using Sail and Docker</strong>, you might need to enable <strong>HTTPS</strong> to integrate with third-party services like <strong>Google</strong>, <strong>Dropbox</strong>, or other <strong>OAuth2 providers</strong>. These services often require secure HTTPS callbacks for authentication and API interactions. Enabling HTTPS in your local development environment ensures you can test these integrations effectively and securely.</p> <p>This guide will show you how to set up HTTPS in your Laravel Sail environment by configuring Nginx as a reverse proxy and forcing HTTPS within your application.</p> <h2> Table of Contents </h2> <ol> <li>Create a Fresh Laravel Sail Application</li> <li>Update the .env File</li> <li>Add Custom Domain to /etc/hosts</li> <li>Configure Docker for HTTPS</li> <li>Create an Nginx Configuration</li> <li>Modify AppServiceProvider to Force HTTPS</li> <li>Rebuild and Restart Sail</li> <li>Clear Laravel Cache</li> <li>Test HTTPS Setup</li> <li>Done!</li> </ol> <h3> 1. Create a Fresh Laravel Sail Application </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>curl <span class="nt">-s</span> <span class="s2">"https://laravel.build/my-app"</span> | bash <span class="nb">cd </span>my-app ./vendor/bin/sail up </code></pre> </div> <p><em>This creates a fresh Laravel app with Sail and brings up the Docker containers.</em></p> <h3> 2. Update the .env File </h3> <p>Edit your <code>.env</code> file to set the <code>APP_URL</code> to your custom domain with <code>https://</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="s">APP_URL=https://my-app.test</span> </code></pre> </div> <p><em>This ensures Laravel generates URLs using HTTPS instead of HTTP.</em></p> <h3> 3. Add Custom Domain to /etc/hosts </h3> <p>Map your custom domain to <code>127.0.0.1</code> in <code>/etc/hosts</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sudo </span>nano /etc/hosts </code></pre> </div> <p>Add the following line:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>127.0.0.1 my-app.test </code></pre> </div> <p><em>This allows your machine to resolve <code>my-app.test</code> to <code>localhost</code>.</em></p> <h3> 4. Configure Docker for HTTPS </h3> <p>Edit the <code>docker-compose.yml</code> file to expose both <code>80</code> (HTTP) and <code>443</code> (HTTPS) ports for Nginx:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">services</span><span class="pi">:</span> <span class="na">laravel.test</span><span class="pi">:</span> <span class="na">ports</span><span class="pi">:</span> <span class="pi">-</span> <span class="s1">'</span><span class="s">80:80'</span> <span class="pi">-</span> <span class="s1">'</span><span class="s">443:443'</span> <span class="c1"># HTTPS port</span> <span class="na">nginx</span><span class="pi">:</span> <span class="na">image</span><span class="pi">:</span> <span class="s">nginx:alpine</span> <span class="na">ports</span><span class="pi">:</span> <span class="pi">-</span> <span class="s1">'</span><span class="s">80:80'</span> <span class="pi">-</span> <span class="s1">'</span><span class="s">443:443'</span> <span class="c1"># Expose HTTPS port for Nginx</span> <span class="na">volumes</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">.:/var/www/html</span> <span class="pi">-</span> <span class="s">./docker/nginx/nginx.conf:/etc/nginx/nginx.conf</span> <span class="c1"># Nginx configuration</span> <span class="pi">-</span> <span class="s">./docker/nginx/ssl:/etc/nginx/ssl</span> <span class="c1"># SSL certificate</span> <span class="na">networks</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">sail</span> </code></pre> </div> <p><em>This config ensures that both the Laravel application and Nginx are set up to handle HTTP and HTTPS traffic. Exposing port 443 allows Nginx to listen for HTTPS requests which it will then proxy to your Laravel application.</em></p> <h3> 5. Create an Nginx Configuration </h3> <p>In this step we'll set up Nginx as a reverse proxy to handle the HTTPS requests and forward them to our Laravel application running in Docker. We'll generate a self-signed SSL certificate for local development purposes.</p> <p><strong>Create a directory for Nginx configuration</strong>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">mkdir</span> <span class="nt">-p</span> docker/nginx/ssl </code></pre> </div> <p><strong>Generate a self-signed SSL certificate</strong>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>openssl req <span class="nt">-newkey</span> rsa:2048 <span class="nt">-nodes</span> <span class="nt">-keyout</span> docker/nginx/ssl/my-app.key <span class="nt">-x509</span> <span class="nt">-days</span> 365 <span class="nt">-out</span> docker/nginx/ssl/my-app.crt </code></pre> </div> <p><em>This creates a self-signed SSL certificate for local HTTPS support.</em></p> <p><strong>Create a new Nginx config file in <code>docker/nginx/nginx.conf</code></strong>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight nginx"><code><span class="k">user</span> <span class="s">nginx</span><span class="p">;</span> <span class="k">worker_processes</span> <span class="s">auto</span><span class="p">;</span> <span class="k">pid</span> <span class="n">/run/nginx.pid</span><span class="p">;</span> <span class="k">include</span> <span class="n">/etc/nginx/modules-enabled/*.conf</span>; <span class="k">events</span> <span class="p">{</span> <span class="kn">worker_connections</span> <span class="mi">1024</span><span class="p">;</span> <span class="p">}</span> <span class="k">http</span> <span class="p">{</span> <span class="kn">include</span> <span class="n">/etc/nginx/mime.types</span><span class="p">;</span> <span class="kn">default_type</span> <span class="nc">application/octet-stream</span><span class="p">;</span> <span class="kn">server</span> <span class="p">{</span> <span class="kn">listen</span> <span class="mi">80</span><span class="p">;</span> <span class="kn">listen</span> <span class="mi">443</span> <span class="s">ssl</span><span class="p">;</span> <span class="kn">server_name</span> <span class="s">my-app.test</span><span class="p">;</span> <span class="kn">ssl_certificate</span> <span class="n">/etc/nginx/ssl/my-app.crt</span><span class="p">;</span> <span class="kn">ssl_certificate_key</span> <span class="n">/etc/nginx/ssl/my-app.key</span><span class="p">;</span> <span class="kn">root</span> <span class="n">/var/www/html/public</span><span class="p">;</span> <span class="kn">index</span> <span class="s">index.php</span> <span class="s">index.html</span><span class="p">;</span> <span class="kn">location</span> <span class="n">/</span> <span class="p">{</span> <span class="kn">proxy_pass</span> <span class="s">http://laravel.test:80</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">Host</span> <span class="nv">$host</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">X-Real-IP</span> <span class="nv">$remote_addr</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">X-Forwarded-For</span> <span class="nv">$proxy_add_x_forwarded_for</span><span class="p">;</span> <span class="kn">proxy_set_header</span> <span class="s">X-Forwarded-Proto</span> <span class="nv">$scheme</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> <span class="kn">sendfile</span> <span class="no">on</span><span class="p">;</span> <span class="kn">keepalive_timeout</span> <span class="mi">65</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <p><em>This config sets up Nginx as a reverse proxy, forwarding HTTPS requests to Laravel’s built-in web server that's provided by the <code>laravel.test</code> Docker container.</em></p> <h3> 6. Modify AppServiceProvider to Force HTTPS </h3> <p>Edit <code>app/Providers/AppServiceProvider.php</code> and add <code>URL::forceScheme('https')</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="kn">use</span> <span class="no">Illuminate\Support\Facades\URL</span><span class="p">;</span> <span class="kn">use</span> <span class="nc">Illuminate\Support\ServiceProvider</span><span class="p">;</span> <span class="kd">class</span> <span class="nc">AppServiceProvider</span> <span class="kd">extends</span> <span class="nc">ServiceProvider</span> <span class="p">{</span> <span class="k">public</span> <span class="k">function</span> <span class="n">boot</span><span class="p">():</span> <span class="kt">void</span> <span class="p">{</span> <span class="no">URL</span><span class="o">::</span><span class="nf">forceScheme</span><span class="p">(</span><span class="s1">'https'</span><span class="p">);</span> <span class="c1">// Force HTTPS in development</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p><em>This ensures that Laravel generates all URLs with HTTPS.</em></p> <h3> 7. Rebuild and Restart Sail </h3> <p>Rebuild the Docker containers to apply your changes:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>sail down sail build <span class="nt">--no-cache</span> sail up <span class="nt">-d</span> </code></pre> </div> <h3> 8. Clear Laravel Cache </h3> <p>After making changes to Laravel, clear the cache:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>sail php artisan config:clear sail php artisan route:clear sail php artisan cache:clear </code></pre> </div> <h3> 9. Test HTTPS Setup </h3> <p>Run the following command to test the HTTPS connection:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>curl <span class="nt">-v</span> https://my-app.test <span class="nt">--insecure</span> </code></pre> </div> <p>A successful result should show:</p> <ul> <li> <strong>Connected to port 443</strong>: </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> * Connected to my-app.test (127.0.0.1) port 443 </code></pre> </div> <ul> <li> <strong>Successful SSL handshake</strong>: </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> * SSL connection using TLSv1.3 / AEAD-CHACHA20-POLY1305-SHA256 </code></pre> </div> <ul> <li> <strong>HTTP 200 OK or 302 Redirect</strong>: </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> &lt; HTTP/1.1 200 OK </code></pre> </div> <p>or<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> &lt; HTTP/1.1 302 Found &lt; Location: https://my-app.test/login </code></pre> </div> <p>These indicate that HTTPS is working and Laravel is correctly generating secure URLs.</p> <h3> 10. Done! </h3> <p>Congratulations 🎉 You've successfully configured <strong>HTTPS</strong> for your Laravel Sail app! You can now visit <code>https://my-app.test</code> in your browser. This setup should enable you to:</p> <ul> <li>Test integrations with OAuth2 providers that require secure HTTPS callbacks.</li> <li>Develop and debug third-party APIs that require HTTPS.</li> <li>Ensure your local dev environment closely mirrors production in terms of security.</li> </ul> laravel docker oauth2 webdev