The python script uses Urllib3 and my server is scripted on Node.js.I'm worrying (and not understanding clearly) about the certificate do I need to save as variable the certificate on my python app, for example I did this:
http = urllib3.PoolManager( cert_reqs="CERT_REQUIRED", ca_certs='client-cert.pem')and I don't know if this is the right way to do it, like it is secure way to do it, or it's okay if hacker gets the hands on certificate?
I successfully setup python ap with Node.js in that way as I explained, I'm expecting the hacker to not get hands on the data being sent and recieved by app and server.