Serve WAI applications using the Warp webserver and the Haskell TLS library.
In order to generate a self-signed certificate for testing, try the following:
openssl genrsa -out key.pem 2048 openssl req -new -key key.pem -out certificate.csr openssl x509 -req -in certificate.csr -signkey key.pem -out certificate.pem
- Move exception handling over to
unliftiofor better async exception support #845
- Cleanly close connection when client closes connection prematurely #844
- Breaking changes: certFile and keyFile are not exported anymore.
- Allow TLS credentials to be retrieved from an IORef. #806
- A config field: tlsCredentials and tlsSessionManager. #805
- Ignoring an exception from shutdown (gracefulClose).
- Passing client certificate, if any, to Warp #783
- Cooperating setGracefulCloseTimeout1 and setGracefulCloseTimeout2 of Warp. #782
- Using gracefullClose of network 3.1.1 or later if available.
- Relaxing version constraint.
- Using the Strict and StrictData language extensions for GHC >8. #752
- When tls 1.5.0 is available, TLS 1.3 is automatically supported.
- Using warp >= 3.2.17.
- Ignore socket errors while sending
- Using tls-session-manager.
- Stop using obsoleted APIs of network.
- Removing dependency to cprng-aes.
- Major version up due to breaking changes.
- runHTTP2TLS and runHTTP2TLSSocket were removed.
- Add an option to disable HTTP2 #450
- Removing SHA 512 and SHA 384 from supportedCiphers to rescue Safari and golang. #429
- Converting “send: resource vanished (Broken pipe)” to ConnectionClosedByPeer. #421
- tls 1.3 support #390
- Fix for leaked FDs #378
accept, see #361
- Support chain certs #349
- Allow warp-tls to request client certificates. #337
Add additional Diffie-Hellman RSA and DSA ciphers to warp-tls.