证书相关

生成证书，信任证书可参考mac 本地配置https 证书，并且通过 Chrome 安全监测

至于nginx，则往下看

nginx相关

• 先找到你本机nginx.conf的位置，接下来需要编辑这个文件

  mac下可参考
  启动nginx
  `sudo nginx`
  重启nginx
  `sudo nginx -s reload`
  关闭nginx
  `sudo nginx -s stop`
  
  nginx.conf的路径为 /usr/local/etc/nginx/nginx.conf
  

• 将生成的devserver.crt和devserver.key两个文件拷贝到/usr/local/etc/nginx/zhengshu目录下
• 配置nginx.conf

  http {
    resolver 8.8.8.8;
    include       mime.types;
    default_type  application/octet-stream;
    sendfile        on;
    keepalive_timeout  65;
    # https
    server {
        listen 443 ssl;
        server_name xx.com; #这里xx.com要在hosts配置指向127.0.0.1
  
        ssl_certificate zhengshu/devserver.crt; #引用刚才拷贝的文件
        ssl_certificate_key zhengshu/devserver.key;#引用刚才拷贝的文件
  
        ssl_session_cache shared:SSL:1m;
        ssl_session_timeout 5m;
  
        ssl_ciphers HIGH:!aNULL:!MD5;
        ssl_prefer_server_ciphers on;
  
        location / {
            proxy_redirect off;
            proxy_set_header X-Real-IP $remote_addr;
            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
            proxy_set_header Host $host:$server_port;
            add_header Access-Control-Allow-Origin *; 
            #还有这种操作
            proxy_pass http://localhost:8080;
            # proxy_pass http://localhost:8086;
        }
    }
    
    include servers/*;
  

}