Django SSL Server

Common errors

• ModuleNotFoundError: No module named 'sslserver'

  cause The 'sslserver' application has not been added to your Django project's INSTALLED_APPS, or the package was not installed.
  fix Ensure `pip install django-sslserver` has been run and add `'sslserver'` to your `INSTALLED_APPS` list in `settings.py`.

• ERR_SSL_PROTOCOL_ERROR (browser error) or [SSL: CERTIFICATE_VERIFY_FAILED] (server error)

  cause This usually indicates an issue with the SSL certificate and key, or the browser not trusting the self-signed certificate. It can also occur if the certificate/key files are not found or are corrupted.
  fix For browser warnings, accept the self-signed certificate in your browser or install `sslserver/certs/development.crt` as a trusted certificate. If providing custom certificates, verify that the `--certificate` and `--key` paths are correct and the files are valid.

• Static files (CSS, JS, images) are not loading (404 errors) when using runsslserver.

  cause The development server might not be configured to serve static files, especially if a third-party static file handler is active, or if using an older version of `django-sslserver` that had issues with static files.
  fix If using an external static file handler, try running `python manage.py runsslserver --nostatic`. Ensure `DEBUG = True` and `STATIC_URL`, `STATICFILES_DIRS`, and `STATIC_ROOT` are correctly configured in `settings.py` for development.

Warnings

• breaking Django SSL Server is strictly for development purposes and MUST NOT be used in production environments. It lacks the security, performance, and robustness required for live applications.
  Fix: For production, use a proper web server like Nginx or Apache with a Gunicorn/uWSGI application server, and handle SSL/TLS termination at the web server level with a trusted certificate authority (e.g., Let's Encrypt).
• gotcha When using the default self-signed certificate, browsers will display security warnings (e.g., 'Your connection is not private'). This is expected behavior because the certificate is not issued by a trusted Certificate Authority.
  Fix: For development, you can either ignore the warning, explicitly trust the provided `development.crt` in your browser's settings, or configure `runsslserver` to use a locally trusted certificate generated by tools like `mkcert`.
• gotcha Version 0.22 officially supports Django up to 2.2 and Python up to 3.7. Using it with newer Django or Python versions might lead to compatibility issues or errors.
  Fix: Check for community-maintained forks like `django-sslserver-v2` or pull requests (e.g., for Django 5 and Python 3.12 compatibility on GitHub) that address newer version support. Consider contributing to or using these updated branches.
• gotcha When using third-party static file handlers (like WhiteNoise or `dj_static`), `django-sslserver` might not serve static files correctly, resulting in 404 errors.
  Fix: Use the `--nostatic` option when running `runsslserver` if your static files are handled by another component: `python manage.py runsslserver --nostatic`.

Install

• pip install django-sslserver Install latest version

Imports

• sslserver

  INSTALLED_APPS = [... 'sslserver', ...]

  Django SSL Server is used by adding 'sslserver' to your project's INSTALLED_APPS setting in `settings.py`. There are no direct Python imports of classes or functions for typical use.

Quickstart

To quickly get started, add 'sslserver' to your `INSTALLED_APPS` in `settings.py`. Then, from your project's root directory, run the `runsslserver` management command. Your Django application will then be accessible via HTTPS, typically at `https://127.0.0.1:8000/`.

# settings.py
INSTALLED_APPS = [
    # ... other apps
    'sslserver',
]

# Terminal
# navigate to your Django project root (where manage.py is located)
# Then run the development server with SSL:
# python manage.py runsslserver
# Access your app at https://127.0.0.1:8000/