Learn how to Deploy Flask Functions on Vultr — SitePoint

Introduction

Flask is a Python framework for constructing internet functions. With Flask, builders can simply outline routes, deal with HTTP requests and responses, and render dynamic content material utilizing Jinja2 templates. It additionally helps extensions permitting builders to combine options like database entry, kind dealing with, and person authentication.

On this article, we’re going to deploy a Flask utility utilizing Gunicorn, together with CSRF safety and Content material Safety Insurance policies implementation. We’re additionally going to arrange a reverse proxy utilizing Nginx and implement HTTPS by requesting a free SSL certificates from Let’s Encrypt.

Deploy Vultr Optimized Cloud Occasion

1. Enroll and log in to the Vultr Buyer Portal.
2. Navigate to the Merchandise web page.
3. From the facet menu, choose Compute.
4. Click on the Deploy Server button within the middle.
5. Select Optimized Cloud Compute because the server kind.
6. Select a server Location.
7. Select Ubuntu 24.04 because the working system.
8. Select an appropriate plan.
9. Select any Further Options if required.
10. Click on Deploy Now.

Add Your Demo Utility Code Information

Set Up a Python Digital Surroundings

1. Set up the python3-venv package deal
2. Create a digital setting.
3. Activate the digital setting.

Add Demo Utility Code Information

1. Clone the Github repository.
2. Navigate to the mission listing.
3. Set up Flask and Gunicorn packages.
4. Enable incoming connections to port 5000.

Apply CSRF Safety and Content material Safety Insurance policies

Cross-Web site Request Forgery (CORS) is a vulnerability that permits somebody to use and reap the benefits of a person’s logged-in session on a trusted web site to make unauthorized requests to a special web site that the person trusts. WTForms is a Flask extension that integrates CSRF safety by default to stop CORS assaults.

Content material Safety Coverage (CSP) is an additional layer of safety for internet functions that protects them from malicious assaults. CSP instructs the browser on what sources are allowed to load on a particular webpage. Often, the web site administrator configures a CSP by including a particular header to the server’s response for a webpage, then the browser receives the CSP header and understands what sources are allowed to load. Talisman is an extension for Flask that simplifies the method of including CSP to Flask functions.

1. Set up flask-wtf and talisman packages
2. Open the app.py file.
3. Edit the app.py file to incorporate Content material Safety Insurance policies.
4. Within the app.py file, import and configure CSRF safety.

   Save and shut the file.

5. Navigate to the templates listing.
6. Open the index.html file.
7. Edit the HTML web page to incorporate CSRF configuration.

   Save and shut the file.

8. Exit the templates listing.

Configuring Nginx as a Reverse Proxy

Nginx acts as a reverse proxy between your internet server and shoppers. It directs incoming requests primarily based in your request configuration settings. On this part, we’re going to configure our utility for reverse proxy for environment friendly request dealing with and cargo balancing. We’re additionally going to request a free SSL certificates from Let’s Encrypt to implement HTTPS that secures the communication between a person and an online server for our area.

1. Log in to the Vultr Buyer Portal.
2. Navigate to the Merchandise web page.
3. From the facet menu, increase the Community drop-down, and choose DNS.
4. Click on the Add Area button within the middle.
5. Observe the setup process so as to add your area identify by deciding on the IP handle of your server.
6. Set the next hostnames as your area’s main and secondary nameservers along with your area registrar.
7. Set up Nginx.
8. Create a brand new Nginx configuration file.
9. Paste the next configuration into the file.
10. Activate the digital host configuration.
11. Check the Nginx configuration.
12. Reload Nginx.
13. Enable incoming connections to port 80 and 443.
14. Set up the certbot package deal.
15. Request an SSL certificates.
16. Begin a Gunicorn server.
17. Now you can entry your Flask utility at https://<your_domain>.

Do Extra With Python Apps on Vultr

Conclusion

On this article, we explored deploy a Flask utility utilizing Nginx reverse proxy and Gunicorn with CSRF safety and CSPs. We additionally secured the appliance by including an SSL certificates and enabling HTTPS entry.

It is a sponsored article by Vultr. Vultr is the world’s largest privately-held cloud computing platform. A favourite with builders, Vultr has served over 1.5 million prospects throughout 185 international locations with versatile, scalable, international Cloud Compute, Cloud GPU, Naked Metallic, and Cloud Storage options. Study extra about Vultr