| # Bind SSL port with PFS-enabling cipher suite | |
| bind :443 ssl crt path_to_certificate no-tls-tickets ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-GCM-SHA384:AES128-SHA256:AES128-SHA:AES256-SHA256:AES256-SHA:!MD5:!aNULL:!DH:!RC4 | |
| # Distinguish between secure and insecure requests | |
| acl secure dst_port eq 443 | |
| # Mark all cookies as secure if sent over SSL | |
| rsprep ^Set-Cookie:\ (.*) Set-Cookie:\ \1;\ Secure if secure | |
| # Add the HSTS header with a 1 year max-age |
Essential blueprint of Play2 architecture is pretty simple and it should be easy to explain in a fairly short blog post. The framework can be understood progressively at different levels; each time having better exposure to some aspects of its design.
The core of Play2 is really small, surrounded by a fair amount of useful APIs, services and structure to make Web Programming tasks easier.
Basically, Play2 is an API that abstractly have the folllowing type
| echo "[setup global]" | |
| echo "credentials += Credentials(Path.userHome / \".ivy2\" / \".credentials\")" > ~/.sbt/global.sbt | |
| echo "" >> ~/.sbt/global.sbt | |
| echo "offline := true" >> ~/.sbt/global.sbt | |
| rm -rf $PLAY_HOME/repository/local/play* | |
| rm -rf $PLAY_HOME/repository/cache/play* | |
| rm -rf $PLAY_HOME/repository/cache/scala_2.9.*/sbt_0.*.*/play | |
| echo "[republish play]" |
| package formatters.json | |
| import play.api.libs.json.Json.toJson | |
| import play.api.libs.json.JsValue | |
| import play.api.libs.json.Format | |
| import java.util.Date | |
| import java.text.SimpleDateFormat | |
| object DateFormatter { |
| def Secured[A](username: String, password: String)(action: Action[A]) = Action(action.parser) { request => | |
| request.headers.get("Authorization").flatMap { authorization => | |
| authorization.split(" ").drop(1).headOption.filter { encoded => | |
| new String(org.apache.commons.codec.binary.Base64.decodeBase64(encoded.getBytes)).split(":").toList match { | |
| case u :: p :: Nil if u == username && password == p => true | |
| case _ => false | |
| } | |
| }.map(_ => action(request)) | |
| }.getOrElse { | |
| Unauthorized.withHeaders("WWW-Authenticate" -> """Basic realm="Secured"""") |
| package mojolly.io | |
| import org.jboss.netty.bootstrap.ClientBootstrap | |
| import org.jboss.netty.channel._ | |
| import socket.nio.NioClientSocketChannelFactory | |
| import java.util.concurrent.Executors | |
| import org.jboss.netty.handler.codec.http._ | |
| import collection.JavaConversions._ | |
| import websocketx._ | |
| import java.net.{InetSocketAddress, URI} |
