Book a call with an Expert

Starting a new venture? Need to upgrade your web app? RapidDev builds application with your growth in mind.

ML App Deployment with HTTPS and SSL

Obtaining SSL Certificates with Let’s Encrypt

Let’s Encrypt is a Certificate Authority (CA) that provides free SSL/TLS certificates. These certificates enable secure HTTPS connections by encrypting data between the client and your server.
Install Certbot, a tool provided by Let’s Encrypt to automate certificate issuance and installation. For example, on Ubuntu:


// Update package list
sudo apt-get update  

// Install Certbot for Nginx
sudo apt-get install certbot python3-certbot-nginx

Once installed, you will follow instructions from Certbot to verify your domain ownership and obtain the certificate.

Configuring Nginx as a Reverse Proxy for Your ML Application

A reverse proxy forwards client requests from the internet to your ML application's internal server. This helps in load balancing, security, and SSL termination.
Create or modify your Nginx configuration file for your domain. For example, create a file in /etc/nginx/sites-available/your-domain.com with the following content:


// Nginx configuration snippet for reverse proxy
server {
    listen 80;
    server\_name your-domain.com www.your-domain.com;
    
    // Redirect all HTTP traffic to HTTPS
    return 301 https://$host$request\_uri;
}

server {
    listen 443 ssl;
    server\_name your-domain.com www.your-domain.com;
    
    // SSL certificate and key locations (will be updated by Certbot)
    ssl\_certificate /etc/letsencrypt/live/your-domain.com/fullchain.pem;
    ssl_certificate_key /etc/letsencrypt/live/your-domain.com/privkey.pem;
    
    // Recommended SSL settings for security and compatibility
    ssl\_protocols TLSv1.2 TLSv1.3;
    ssl_prefer_server\_ciphers on;
    
    // Proxy settings for the ML application
    location / {
        proxy\_pass http://localhost:8000; // Forward requests to your ML backend server
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote\_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    }
}

Ensure your ML application is running on the appropriate port (e.g., 8000 in this example).
Create a symbolic link for the configuration file in /etc/nginx/sites-enabled/ and restart Nginx:


// Link configuration and restart Nginx
sudo ln -s /etc/nginx/sites-available/your-domain.com /etc/nginx/sites-enabled/
sudo nginx -t  // Test configuration for syntax errors
sudo systemctl restart nginx

Obtaining and Installing the SSL Certificate Using Certbot

Now that Nginx is correctly configured as a reverse proxy, run Certbot to obtain the SSL certificate. Use the Nginx plugin to automate certificate installation:


// Run Certbot to obtain and install the certificate
sudo certbot --nginx -d your-domain.com -d www.your-domain.com

Certbot will update your Nginx configuration with proper certificate paths and adjust SSL settings if required.
If successful, Certbot also sets up automatic certificate renewal. You can test renewal with:


// Dry-run the renewal process
sudo certbot renew --dry-run

Verifying HTTPS Connection and Ensuring Secure ML Application Communication

After Certbot installation and configuration, check your site by visiting https://your-domain.com in your web browser. You should see a secure connection mark (typically a padlock icon).
Test your ML API endpoints to confirm that requests are forwarded securely to your backend server.
If you encounter any issues:


// Check Nginx error logs
sudo tail -f /var/log/nginx/error.log  

// Review your ML application logs for any connection issues or errors

Using tools like curl or Postman can also help verify the HTTPS responses from your deployed ML application.

Additional Considerations for ML App Deployment with HTTPS and SSL

Firewall Rules: Ensure that port 80 (HTTP) and port 443 (HTTPS) are open so that external traffic can reach Nginx.
SSL Security Enhancements: Harden your SSL configuration by implementing HTTP Strict Transport Security (HSTS), configuring preferred ciphers, and disabling weak protocols.
Monitoring and Logging: Set up comprehensive logging for both Nginx and your ML application to monitor traffic, errors, and potential security issues.
Scalability: As your ML application usage grows, consider load balancing techniques and auto-scaling your backend servers further.

Conclusion

This guide provided a detailed, step-by-step walkthrough for deploying an ML application with HTTPS and SSL by integrating Let’s Encrypt for certificate issuance, using Certbot for automation, and configuring Nginx as a secure reverse proxy.
Each step ensures secure communication between clients and the ML application, ultimately making your deployment production-ready and robust.

Recognized by the best

Get a Free Consultation

Trusted by 600+ businesses globally

From startups to enterprises and everything in between, see for yourself our incredible impact.

RapidDev was an exceptional project management organization and the best development collaborators I've had the pleasure of working with.

They do complex work on extremely fast timelines and effectively manage the testing and pre-launch process to deliver the best possible product. I'm extremely impressed with their execution ability.

Arkady

CPO, Praction

Working with Matt was comparable to having another co-founder on the team, but without the commitment or cost.

He has a strategic mindset and willing to change the scope of the project in real time based on the needs of the client. A true strategic thought partner!

Donald Muir

Co-Founder, Arc

RapidDev are 10/10, excellent communicators - the best I've ever encountered in the tech dev space.

They always go the extra mile, they genuinely care, they respond quickly, they're flexible, adaptable and their enthusiasm is amazing.

Mat Westergreen-Thorne

Co-CEO, Grantify

RapidDev is an excellent developer for custom-code solutions.

We’ve had great success since launching the platform in November 2023. In a few months, we’ve gained over 1,000 new active users. We’ve also secured several dozen bookings on the platform and seen about 70% new user month-over-month growth since the launch.

Emmanuel Brown

Co-Founder, Church Real Estate Marketplace

Matt’s dedication to executing our vision and his commitment to the project deadline were impressive.

This was such a specific project, and Matt really delivered. We worked with a really fast turnaround, and he always delivered. The site was a perfect prop for us!

Samantha Fekete

Production Manager, Media Production Company

The pSEO strategy executed by RapidDev is clearly driving meaningful results.

Working with RapidDev has delivered measurable, year-over-year growth. Comparing the same period, clicks increased by 129%, impressions grew by 196%, and average position improved by 14.6%. Most importantly, qualified contact form submissions rose 350%, excluding spam.

Appreciation as well to Matt Graham for championing the collaboration!

Michael W. Hammond

Principal Owner, OCD Tech

More Reviews

We put the rapid in RapidDev

Need a dedicated strategic tech and growth partner? Discover what RapidDev can do for your business! Book a call with our team to schedule a free, no-obligation consultation. We’ll discuss your project and provide a custom quote at no cost.