HTTP 2

elmartus

Does Opalstack support HTTP 2, especially for django webapps? Also does it support ASGI?

sean

elmartus Our front-end Nginx server does support HTTP2 but only for static content at this time.

Regarding ASGI, our installer sets up a uWSGI server for your Django projects but if you want to change the backend to run Daphne or some other ASGI server you can do that.

elmartus

Hi, so if I understand correctly I can install an ASGI server but it wouldnt really run on HTTP2?
Anyways I dont think I need ASGI, I want it so that my static content can load all at once in the same HTTP connection. So the question is: is it already doing that?
I'm serving all my static content through a Symlink, Static app. Do I have to do anything special in my django app to enable this?

sean

elmartus Right, you won't get HTTP/2 on your backend server. I do think the connection hits the backend as HTTP/1.1 which does support support persistent connections, so maybe that will work?

Regarding static content for your Django app, we have that covered here: Serving static content for your Django project

sean

Quick update: HTTP/2 should be working on all HTTPS sites, static or otherwise.

davidlh

Sean, I'm itching to build a gRPC server using Go. I need HTTP/2 for this. Based on your post from a month ago, sounds like I'm good to go. Right? Thanks.

sean

davidlh I can't guarantee it. Although HTTP/2 is enabled, certain capabilities might not be available. For example, one customer pointed out to me that server push wasn't working.

Right now, the only apps that are served directly by Nginx (ie not proxied behind Nginx) are static apps and PHP-FPM+Nginx apps. Those app types should have full HTTP/2 capabilities.

The issue the front-end Nginx server isn't capable of speaking HTTP/2 on the back-end (ie to customer proxy port apps and PHP+Apache apps). We're looking into ways to make HTTP/2 available for other types of applications on the platform, and I'll be sure to drop an update here when there is news to report.

For now as a workaround, we can configure the firewall to allow access to your app's port - the downsides there are:

You'll need to include the port number in your URLs when accessing your app, eg https://domain.com:54321/
Since you're bypassing the front-end Nginx server you'll need to manage all of the SSL yourself, ie you'll need copies of your certificates and keys in your home directory and you'll need to configure/code your app to use them for SSL connections.
Maybe other concerns, depending on your application.

If you want to try that out, then email our support team to let us know which application, and we'll then open it up in the firewall for you.

davidlh

Thanks for the quick and detailed reply, Sean. I'm at the beginning of this journey and will be in touch. You can look forward to plenty of support tickets.... 😃