michardy
commented
9 years ago We need to have SSL/TLS encryption before we make the site public. We would need a certificate and the whole website should probably be encrypted to protect from programs like Firesheep. The implementation would change depending on whether we are just using flask or we are hosting the static files on Nginx with a proxy to flask. The Flask static file handler is not recommended for production use.
fhebert-perkins
Do you understand how https is implemented?