running https://yourssldomain.com


# generate keys, run in ~/.sslcert
openssl genrsa -des3 -out server.orig.key 2048
openssl rsa -in server.orig.key -out server.key
openssl req -new -key server.key -out server.csr
# set Common Name: yourssldomain.com
openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt
echo "127.0.0.1 yourssldomain.com" | sudo tee -a /private/etc/hosts

# redirect localhost:443 to localhost:3000 so rails doesn't need to be root
sudo ipfw add 100 fwd 127.0.0.1,3000 tcp from any to any 443 in

# start rails, run this in repo
$ thin start --ssl --ssl-verify --ssl-key-file ~/.sslcert/server.key --ssl-cert-file ~/.sslcert/server.crt

# (optional) Add server.crt as trusted !!SYSTEM!! (not login) cert in the mac osx keychain
# Open keychain tool, drag .crt file to system, and trust everything.