Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support start api with tls #3193

Open
softprops opened this issue Aug 23, 2021 · 5 comments
Open

Support start api with tls #3193

softprops opened this issue Aug 23, 2021 · 5 comments
Labels
maintainer/need-followup type/feature Feature request

Comments

@softprops
Copy link

Describe your idea/feature/enhancement

Provide a clear description. Ex. I wish SAM CLI would [...]

I wish sam local start-api would support https.

Proposal

Add details of how to add this to the product.

The start-api subcommand starts up a Flask app to simulate api gateway generated events. Most clients of api gateway expect an https interface. Flask supports an ssl_context.

Allow users to provide a self signed key and cert to opt into an https supported mode of start-api. Omitting these would have the same effect as we have today, a non tls interface.

Things to consider:

  1. Will this require any updates to the SAM Spec

No.

Additional Details
@ssenchenko ssenchenko added the type/feature Feature request label Aug 23, 2021
@ssenchenko
Copy link
Contributor

sam local start-api created for local testing and for exposing API to external connections. What specific use case do you have in mind that is hindered by sam local start-api not supporting HTTPS?

@kodmunki
Copy link

@ssenchenko we need this for local development as well. Does this project not support HTTPS? Looking through the source and it appears that is the case. Someone please share if this is not the case and the sam local start-api does, in fact, support HTTPS.

To your question @ssenchenko we need it because we cannot run our project locally in development. The project front-end requires HTTPS to support front-end persistence and it causes browsers to throw Mixed Content errors and will not serve the SAM Local backend payloads over HTTP.

Could someone share if/when this project would support HTTPS?

@ssenchenko
Copy link
Contributor

ssenchenko commented Dec 10, 2021
edited
Loading

Can you relax your FE requirements for running locally? Locally you don't actually need HTTPS.

If you want to run integration or end-to-end tests the way to do it is deploying to the test/staging environment at cloud. It's the only way to ensure that your integration/end-to-end testing is as close to your prod as your configuration of the environment is close to prod.

The nature of local environment is different from the cloud. We are working on making them as close as possible but it takes time. And some differences cannot be eliminated at this point of time anyway.

We have a roadmap here, but we also try to take in popular feature requests based on 👍🏽 from the community. This feature doesn't seem to be getting many votes so far. At least not yet.

@samaybhavsar
Copy link

Hi,

I encountered similar issue during development. We are using secure cookies for authentication and this requires the endpoints to be HTTPS.

Here is the work around on how we set this up:-

https://gist.github.com/samaybhavsar/b2fc549094bdc1e36eb25826db75a080

@jeremymturner
Copy link

+1 on this feature. I have the same use case, I use code that requires HTTPS in order for a user to authenticate with an external server, and it fails if the local content and API are HTTP.

@mbklein mbklein mentioned this issue Sep 7, 2023
Merged
8 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
maintainer/need-followup type/feature Feature request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
6 participants
@softprops @kodmunki @samaybhavsar @jeremymturner @ssenchenko @aws-sam-cli-bot