宣告著作權:Django同時支持http/https - Alita的文章 - 知乎 https://zhuanlan.zhihu.com/p/385440741
一、django中的HTTPS
HTTPS在web應用中與web服務器有關,比如搭建nginx+django應用,通過反向代理https和http請求重定向到django的http請求上,https證書在web服務器上配置,與django應用無關,當反向代理也是走https請求時,django則需要通過插件使django可支持https,
二、 django中的SECURE_SSL_REDIRECT配置
在settings.py中添加SECURE_SSL_REDIRECT = True,默認下配置為SECURE_SSL_REDIRECT = False
1. 設定SECURE_SSL_REDIRECT = True
此時在瀏覽器發出http請求時django會重定向到https上,
以 $ python manage.py runserver啟動應用,發出http請求后django后臺日志如下: “GET / HTTP/1.1” 301 0 Self-signed SSL certificates are being blocked:Fix this by turning off ‘SSL certificate verification’ in Settings > General…
但此時web應用是不支持https的,報錯如下 You’re accessing the development server over HTTPS, but it only supports HTTP
2. 設定SECURE_SSL_REDIRECT = False
此時http請求不會跳轉到https,http此時django能正確訪問,如果直接請求HTTPS時會報錯如下: You’re accessing the development server over HTTPS, but it only supports HTTP.
三、django的https支持:sslserver插件
1.如果django需要HTTPS支持,可安裝有sslserver插件:
$ pip install django-sslserver2. 在settings.py中添加配置
SECURE_SSL_REDIRECT = False
INSTALLED_APPS = (
...
"sslserver",
...
)3. 自帶證書啟動django應用
$ python manage.py runsslserver4. 指定證書啟動django應用
$ python manage.py runsslserver --certificate /path/to/certificate.crt --key /path/to/key.key 0.0.0.0:8000當SECURE_SSL_REDIRECT = False時,http請求無回應,https請求能正確訪問, 當SECURE_SSL_REDIRECT = True時,http請求會重定向https,此時django支持https,可正確訪問,
5. 使用gunicorn啟動django
#!/bin/sh
# put 8 workers as Daemon listening for HTTPS on 443
gunicorn -D -w 8 --certfile=/path/server.crt --keyfile=/path/server.key djangoProject.wsgi -b 0.0.0.0:443
# put 2 workers as Daemon listening for HTTP on port 80
gunicorn -D -w 2 bodyofchrist.wsgi -b 0.0.0.0:80轉載請註明出處,本文鏈接:https://www.uj5u.com/houduan/479228.html
標籤:Python