I'm going to implement a web app which requires clients to authenticate by client certificates. The web app is running behind a load balancer which talks to internal services on none https
way.
I've configured my tornado with the following:
if __name__ == "__main__":
app = make_app()
ssl_ctx = ssl.create_default_context(ssl.Purpose.CLIENT_AUTH)
ssl_ctx.load_cert_chain("../server.crt", "../server.key")
ssl_ctx.load_verify_locations("../ca.crt")
ssl_ctx.verify_mode = ssl.CERT_REQUIRED
http_server = tornado.httpserver\
.HTTPServer(app, ssl_options=ssl_ctx)
http_server = tornado.httpserver.HTTPServer(app)
http_server.listen(3333)
logging.info("Server is running.")
tornado.ioloop.IOLoop.current().start()
It works only over https. My question is: Is there anyway to config tornado work on http?