Need help cloning? Visit
is a free Git and Mercurial client for Windows.
is a free Git and Mercurial client for Mac.
We already have LuaSocket, so why not add support for SSL-protected networking as well?
But first, e-net! <_< >_>
Just to put into perspective what https could be used for: https://github.com/ignacio/LuaOAuth/blob/master/src/OAuth2.lua
The OpenSSL dependency is pretty heavy in its file size. Maybe it's possible to strip it down to just the things LuaSec needs. Then again, compiling OpenSSL has to be a very interesting adventure.
OpenSSL dependency is a nightmare on windows. Basically you have to run a separate installer on the client before the thing will work. It's killing a non-löve related project at my workplace.
^ oops, i forgot to log in
I think the cost of adding and maintaining that dependency on all systems does not justify the benefits - the usage of SSL in games is too niche; maybe 5 or 6 people in total would need it.
Now, if someone other than the core devs did support this on the 3 main systems, I would not have a problem.
So, what's the best way to make a https request with LÖVE?
Thomas R. Koll The only way is to setup an HTTP to HTTPS proxy. I'm planning on doing this via Heroku.
+1 I would really like to be able to make HTTPS requests. I've wanted to use both the GitHub API and the Sentry API from my game, but both require HTTPS.
I would like to have https as well. Perhaps we could just add a ./configure flag that isn't enabled by default, and distribute the binaries on the side?
That way "normal" developers can just use the nice small binary, and win/mac developers use a love-https binary. (linux users can just make it a dependency via luarocks?)
Kyle Conroy Thomas R. Koll You can add LuaSec yourself and just require() it.
Perhaps we could consider adding a low-footprint alternative instead of LuaSec?
I really don't know much about SSL implementation, but perhaps it's worth a thought?
I think something like luasec would be cool and is defitnally a good addition but maybe make it optional somehow. That way only the ones who use it can suffer from the extra weight.
Lucien Greathouse has created a simple Lua HTTPS API (wrapping libcurl) that can be used in LÖVE: https://github.com/LPGhatguy/luajit-request
To put this issue in perspective, would it make sense to add libcurl to the framework, or should this workaround be documented on the wiki, and the ticket marked as wontfix?
If we are afraid that LuaSec + OpenSSL is too big of a dependency, would using polarssl and a wrapper for that be better?
EDIT: That wrapper doesn't cover very much of the library... we would either have to write a new wrapper or just use FFI.
As posted above, if you want https use this
Need more out of your issue tracker?
Learn more about JIRA