On Wed, Nov 18, 2009 at 10:30 AM, edgarsmolow <[email protected]> wrote: > Mike, > > I'm developing a couple of sites which need to serve up pages over > HTTPS. In a nutshell, what needs to be done to accomplish it? Are > there both server-side and app-side things to do?
Cc'ing the Pylons list because the conversation started there, and somebody may benefit from it. If you use Apache with ProxyPass, only Apache has to worry about HTTPS. PasteHTTPServer will run as usual, serving HTTP, but listening only on localhost for requests from Apache or a console browser. So the Pylons application doesn't care whether it's running under HTTPS. But if it wants to know (for some application-specific reason), you can use the "RequestHeader HTTPS 1" trick to pass an extra header to Pylons, which will appear as request.environ["HTTP_HTTPS"]. It is probably possible to activate Python SSL on top of PasteHTTPServer (if you don't want to use Apache or another webserver at all), but I don't know of any widely-used Paste-compatible server that does that. -- Mike Orr <[email protected]> -- You received this message because you are subscribed to the Google Groups "pylons-discuss" group. To post to this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/pylons-discuss?hl=en.
