Databases
StackOverflow2013
Postsdbo
POHTTPS server with Python
 

Note that there are some explanatory texts on larger screens.

plurals
  1. POHTTPS server with Python
    primarykey
    data
    text
    <p>I have written a simple webserver &amp; client with python, following is my code. I want to implement HTTPS, for that I am using standard SSL library. I am using Python 2.7.3. I generated certificate file and self signed it. So I have .crt and .key files which I use it to bind on the socket. </p> <p>When I browse it from the browser, I get the exception error that certificate is self signed and I have to add it to the exceptions. Then it works. </p> <p>Code of my sever :</p> <pre><code>import BaseHTTPServer import urlparse import urllib import SocketServer import threading import ssl HOST_NAME = 'localhost' PORT_NUMBER = 8089 class Handler(BaseHTTPServer.BaseHTTPRequestHandler): def do_HEAD(self): self.send_response(200) self.send_header("Content-type", "text/html") self.end_headers() def do_GET(self): self.send_response(200) self.send_header("Content-type", "text/html") self.end_headers() if self.path == '/get/': self.wfile.write('On /get/') return self.wfile.write('On root') return def do_POST(self): pass class ThreadedHTTPServer(SocketServer.ThreadingMixIn, BaseHTTPServer.HTTPServer): pass if __name__ == '__main__': httpd = BaseHTTPServer.HTTPServer((HOST_NAME, PORT_NUMBER), Handler) httpd.socket = ssl.wrap_socket (httpd.socket, keyfile='my_key.key', certfile='my_cert.crt', server_side=True) try: httpd.serve_forever() except KeyboardInterrupt: httpd.server_close() print "Server Stopped - %s:%s" % (HOST_NAME, PORT_NUMBER) </code></pre> <p>However I am trying to use requests module and when I provide the .crt file with the requests, I get the following error: </p> <pre><code>requests.get('https://localhost:8089', verify=True) #requests.exceptions.SSLError: [Errno 1] _ssl.c:504: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed requests.get('https://localhost:8089', verify='my_cert.crt') #requests.exceptions.SSLError: [Errno 1] _ssl.c:504: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed requests.get('https://localhost:8089', cert='my_crt.crt') #requests.exceptions.SSLError: [Errno 336265225] _ssl.c:351: error:140B0009:SSL routines:SSL_CTX_use_PrivateKey_file:PEM lib requests.get('https://localhost:8089', cert=('my_crt.crt', 'my_key.key')) # requests.exceptions.SSLError: [Errno 1] _ssl.c:504: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed requests.get('https://localhost:8089', verify=False) #&lt;Response [200]&gt; </code></pre> <p>1) Why I am getting this error? I certainly don't want to use 'verify=False'. I want to validate the certificate at the client side.</p> <p>2) (Assuming I get to make it work) If I enforce cert_reqs=CERT_REQUIRED by changing :</p> <pre><code>httpd.socket = ssl.wrap_socket (httpd.socket, keyfile='my_key.key', certfile='my_cert.crt', cert_reqs=CERT_REQUIRED, server_side=True) </code></pre> <p>then does it mean only people who have my cert file (my_cert.crt) will be able to send request and get the response and people who don't, will not be able to?</p>
    singulars
    1. This table or related slice is empty.
    1. This table or related slice is empty.
    1. PTQuestion
    1. USavi
    1. USavi
    plurals
    1. This table or related slice is empty.
    1. This table or related slice is empty.
    1. This table or related slice is empty.
    1. PO
      singulars
      1. PTAnswer
    1. This table or related slice is empty.
    1. COCompare your certfile to the one provided with Requests, make sure they're both in the same format. That's the most obvious failure cause.
      singulars
      1. POHTTPS server with Python
      1. USLukasa
    2. COthey are same. Infact I am running both client and server from same folder and they use same key
      singulars
      1. POHTTPS server with Python
      1. USavi
    3. COThat's not what I meant. Requests ships with a default `cacert.pem` file, as you can see [here](https://github.com/kennethreitz/requests/blob/master/requests/cacert.pem). I meant that you should make sure the format here matches the format of your certfile.
      singulars
      1. POHTTPS server with Python
      1. USLukasa
 

Querying!

 
Guidance
A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.

SQuiL has stopped working due to an internal error.

If you are curious you may find further information in the browser console, which is accessible through the devtools (F12).

Reload