My stack looks like this:
Nginx <–>Gunicorn (WSGI Server) <–>APIStar (WSGI app)
I am operating under the assumption that you are using WSGI , but this framework supports Async model too. So a HTTPS request comes into my NGINX server which is the termination point for the SSL. I use Certbot and the nginx pluggin to aquire a free security cert for this task. Nginx decrypts the request then using a unix socket proxy’s the request to Gunicorn which is the WSGI server running my apistar WSGI app. In APIStar you write apps and you use a compliant server to run them. When you type
apistar run you are running your APIStar app in the werkzueg WSGI development server. That is not a production server. You’ll want to use something like gunicorn, uwsgi, apach mod_wsgi.
Look through some of the documentation for running Django or Flask apps. You can follow all the same setup but when it comes time to pass an app to the WSGI server you just use your APIStar app instance instead