Requesting a SSL/TLS Certificate
In the ACM console, click Request.
Configuring a Secure Listener
Create a configuration file named alb-secure-listener.config in the .ebextensions directory with the following contents, and set the value of SSLCertificateArns to the ARN noted in the previous step.
Redirecting HTTP Traffic to HTTPS Traffic
Create a configuration file named alb-http-to-https-redirection.config in the .ebextensions directory with the following contents.
References
- Configuring end-to-end encryption in a load-balanced Elastic Beanstalk environment
- [1] Elastic Beanstalk Environment Configuration File
Conclusion
By requesting a SSL/TLS certificate, configuring a secure listener, and redirecting HTTP traffic to HTTPS traffic, you can ensure that your Django site is served over a secure connection.
FAQs
Q: What is the purpose of requesting a SSL/TLS certificate?
A: To ensure that the data exchanged between the browser and the application is encrypted.
Q: What is the purpose of configuring a secure listener?
A: To configure the load balancer to use the SSL/TLS certificate for secure communication.
Q: What is the purpose of redirecting HTTP traffic to HTTPS traffic?
A: To ensure that all traffic to the site is served over a secure connection.
Q: Can I deny public access to my Django site?
A: Yes, you can remove the corresponding domain name from the ALLOWED_HOSTS list in the settings.py file or set up additional listener rules in the load balancer.
