Hi Tony, As long as you trust your server, this is fine. Bear in mind, though, that redirecting all connections via your server loses much of the advantage of App Engine being globally distributed, as well as losing the reliability advantage!
-Nick Johnson On Mon, Jul 13, 2009 at 6:39 PM, Tony<[email protected]> wrote: > > Rather than redirect users to https://appname.appspot.com, I set up an > external server with my SSL cert and nginx reverse proxying SSL > requests to app engine - e.g. it proxies https://secure.mydomain.com > to https://myapp.appspot.com. As far as I can tell, it works fine (in > testing). However, it just feels like I'm maybe doing something > foolish, here. The data is never sent unencrypted over the wire, and > the chain of trust doesn't seem to be broken (user trusts me, via my > SSL cert, and I trust myapp.appspot.com), but I figured I'd ask in > case this is an obvious "hey, don't do that, idiot!" scenario I don't > know about. > > > -- Nick Johnson, App Engine Developer Programs Engineer Google Ireland Ltd. :: Registered in Dublin, Ireland, Registration Number: 368047 --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Google App Engine" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/google-appengine?hl=en -~----------~----~----~----~------~----~------~--~---
