abcd789's avatar

how to run a php artisan command for https host

Hi guys !! I was struggling to run php artisan serve command on certificated protocal . please tell me how to run a php artisan command for https host

0 likes
20 replies
bobbybouwmann's avatar

Not sure what your question is? Do you want to run php artisan on a remote server?

abcd789's avatar

I cant run the command php artisan serve in HTTPS Mode, while it is running in http mode, pls guide me . In brief the php artisan serve commnd is executing in NON ssl Mode , it is not getting executed in SSL mode?

siangboon's avatar

it's a standard protocol that HTTPS is listening on port 443, you can simply run the command to listen on that port

php artisan serve --port=443

by the way, php artisan serve is for development use only and ssl certificate is for production environment and both of them have no work relation at all as both serve their purpose differently...

although you can customize your web server to install the SSL certificate and and listening on custom port but you are breaking the standard and the public may doubt and not able to accept it...

msyadav's avatar

@siangboon It is giving error: Failed to listen on 127.0.0.1:443 (reason: An attempt was made to access a socket in a way forbidden by its access permissions.

1 like
siangboon's avatar

@msyadav check any process (probably another web server is running) using that port.... only 1 port number can be used at a time.

Snapey's avatar

As has been said. artisan serve is a development tool for a single user. Why would you need to ever run it over https ?

isimmons's avatar

@Snapey because Jeffrey is teaching things that only work over https ;-b

1 like
marco-plastiq's avatar

I'm not sure why running ssl in local would seem so strange to some devs... in my opinion it is the best practice. Recently my team were able to fix a bug early on, thanks to the fact that we have our local environments set with SSL and self-signed certificates.

3 likes
Snapey's avatar

@marco-plastiq because protocol and port number should be transparent to your application

DavidSpooner's avatar

@snapey I have an app that is used as an Iframe on another site. As such, and with Chrome's new 3rd party cookie policy in effect, I had to add the Secure flag to cookies delivered by the app. With the secure flag in place, the app simply cannot run over http. I can get around it by manually removing the Secure flag when I'm working in dev or by adjusting settings in at Chrome://flags. However, these manual fixes are not ideal when working with our automated testing suite and the rest of the team. I can't tell everyone else to temporarily make code changes every time they need to run tests. So mimicking the production environment (with ssl) in local development seems like the best solution to me. Does anyone know of any other workaround I should consider here?

Snapey's avatar

@davidspooner your local .env file can specify different cookie settings to production .env file ?

DavidSpooner's avatar

@snapey Thanks for the reply. I had actually investigated this avenue but was having trouble getting it to work. We have multiple .env files and I was just working in the wrong one. It just took a little more fiddling with it and I did get this to work. Thanks for the tip.

jamols09's avatar

Just a quick question. How did you manage to run https locally ?

sentisso's avatar

If you're using xampp, then you can setup HTTPS locally with xampp (this post is also useful for setting up HTTPS) and then you can:

  1. move your project to htdocs folder and visit it with https://localhost/projectFolder/public/

  2. or just create a special VirtualHost in httpd-vhosts.conf for this project (always point to that public folder, this is from where the project is running) and then visit it with https://localhost/ in this example (you can of course, run in on a subdomain if you want to)

    <VirtualHost *:80>
    ServerName localhost
    DocumentRoot "c:\pathToYourProject\projectFolder\public"
    <Directory "c:\pathToYourProject\projectFolder\public">
        Options All
        AllowOverride All
    </Directory>
</VirtualHost>

# this should ensure https (this is mentioned in the stackoverflow post, that I linked as useful
<VirtualHost *:443>
    ServerName localhost
    DocumentRoot "c:\pathToYourProject\projectFolder\public"
    SSLEngine on
    SSLCertificateFile "conf\ssl.crt\server.crt"
    SSLCertificateKeyFile "conf\ssl.key\server.key"
    <Directory "c:\pathToYourProject\projectFolder\public">
        Options All
        AllowOverride All
    </Directory>
</VirtualHost>

Theoretically, when you're using this method, you don't even need php artisan serve (tbh I'm not entirely sure if it has any purpose in this case).

mptamilselvan's avatar

I have not used Xampp. Using Laravel how can we configure HTTPS in localhost site.

DavidSpooner's avatar

@jamols09 Sorry for missing this until now. For me, I didn't end up running https locally. I have an env.dev file where I set cookie setting so that they play well with my local http environment. Then in config/session.php I set some default cookie settings for production using the env() helper.

roberto-dev's avatar

Because "artisan serve" at the moment doesn't support the HTTPS protocol directly, you can use Vite. With Laravel 9 you have Vite. So, in this case, you can start Vite for serving HTTPS and forwarding the requests to your php artisan serve. If you are using Vite (for example, for building your front-end) you can use this approach. The approach is explained here: https://dev.to/robertobutti/laravel-artisan-serve-and-https-cb0

1 like
slothentic's avatar
brew install ngrok
php artisan serve
ngrok http 8000

Use the generated HTTPS url upon running last command as your HTTPs testing URL

Please or to participate in this conversation.