Where to Argo Tunnels terminate HTTP?

I have argo tunnels setup for an internal application and I’m pleased to see that 99% of all my traffic is hitting Cloudflare on HTTP/2. However the internal application is just a Python application which is serving over HTTP/1. Does it make sense to put something in front of Python (ex Nginx) to serve it over TLS w/ HTTP/2 support? Or are the requests translated from HTTP/2 to HTTP/1 at the local Argo endpoint?