python - HTTPS on Elastic Beanstalk Flask application -

-

i have been trying ssl enabled on aws elastic beanstalk(eb) application not luck far.

after following documentation configuring https access on eb, created self-signed certificate believe enough if 1 wants encryption.

i created eb environment used load balancer , after uploading certificate, able use , pick secure listening port (8443).

on ec2 load balancer, created listener 

https   8443    http    80  <cert file>

i gave load balancer , eb instance security group had rule:

custom tcp rule     tcp     8443     0.0.0.0/0

i included config in .ebextensions pointing documentation told me:

resources:   sslsecuritygroupingress:     type: aws::ec2::securitygroupingress     properties:       groupname: {ref : <security_group_name>}       ipprotocol: tcp       toport: 8443       fromport: 8443       cidrip: 0.0.0.0/8443

then in flask application application had these parameters:

from openssl import ssl flask_sslify import sslify  context = ssl.context(ssl.tlsv1_2_method) context.use_privatekey_file('/home/ec2-user/privatekey.pem') context.use_certificate_file('/home/ec2-user/server.crt')  basic_auth = basicauth(application) sslify = sslify(application)   if __name__ == '__main__':     application.run(host='0.0.0.0', port=8443, ssl_context=context)

now when go instance's public ip prefixed https:// this:

google chrome connection info (can't post images current rep ughh)

which makes me think have encryption i'm after flask server connection log still shows clear requests (expected see jumbled, encrypted request info).

when connect *.elasticbeanstalk.com address nothing.

so guess have 2 questions:

1) does mean have encryption?

2) why can't access instance elasticbeanstalk url?

your elb config listen https request on port 8443 , make proxy request ec2 http port. so, ec2 must listen on http port. but, means terminate ssl request on elb.

if want ec2 listen https request on port 8443, elb config should be:

https   8443    https   8443  <cert_file>

Comments

Post a Comment

Popular posts from this blog

qt - Using float or double for own QML classes -

-
i've created components , helper methods using c++ , qt used in qml gui. of methods calculate gui elements (size, transformations, scene graph items creation). target arm 32 bit using opengl / eglfs render output. opengl using float , qml using real (defined double ). what should use in c++ do not lose precision? if use qreal ( double ) shouldn't lose precision. if git grep float in qtbase.git , can find out bit more: dist/changes-5.2.0-**************************************************************************** dist/changes-5.2.0-* important behavior changes * dist/changes-5.2.0-**************************************************************************** dist/changes-5.2.0- dist/changes-5.2.0- - qt compiled qreal typedef'ed double on dist/changes-5.2.0: platforms. qreal float on arm chipsets before. guarantees more dist/changes-5.2.0- consistent behavior between platforms qt supports, binary dist/chan...
Read more

Create Outlook appointment via C# .Net -

-
i need create outlook appointment using microsoft.office.interop.outlook , while can work locally on own workstation , works if run web application via server's browser, not work when connect server externally. hence, think might permission issue. i changed application pool identity " localsystem " don't access denied error. unfortunately, doesn't work. the app behaves if appointment created, appointment doesn't appear in outlook. here include file on top of aspx.cs page using outlook = microsoft.office.interop.outlook; here code using pop appointment. outlook.application apptapp = new outlook.application(); outlook.appointmentitem appt = apptapp.createitem(outlook.olitemtype.olappointmentitem) outlook.appointmentitem; appt.subject = txtfirstname.text + " " + txtlastname.text; appt.body = txtcomment.text; appt.alldayevent = false; appt.start = datetime.parse(txtreminderdate.text + " 8:00 am"); appt.end = datetime.p...
Read more

ios - Swift Array Resetting Itself -

-
i have 2 arrays: pointhistory , datehistory . have nstimer , , when timer runs out, action called. in action appending int pointhistory , , current date string datehistory . here timer action: func timeraction() { let steppervalue = int(stepper.value) employee.numberofpoints = steppervalue networking.saveemployee(employee, completion: { (error) -> void in if error != nil { let alert = uialertcontroller(title: "error", message: "there error updating \(self.employee.name)'s points", preferredstyle: .alert) let alertaction = uialertaction(title: "ok", style: .cancel, handler: nil) alert.addaction(alertaction) self.presentviewcontroller(alert, animated: true, completion: nil) } }) var dateformatter = nsdateformatter() dateformatter.dateformat = "mm-dd-yyyy" dateformatter.timezone = nstimezone.localtimezone() var date = nsdate() var ...
Read more