HTTP is quite a high-level protocol -- it's text based (7-bit ASCII), and operates within a network pipe. A server could run via plain text on the command line, but that wouldn't be very interesting, so it's usually piped to a program, or better yet a network port. (A pipe is a bidirectional comm channel. Although, how that actually manifests, or works, in a *nix shell, or MS-DOS/Windows context, I'm not clear on. Also MS has the equivalent function in name, but it's a one-way street I think?--)
HTTP is normally handled over TCP/IP, so that the text can be collected from time to time and sent as packets, and will be transmitted reliably in-order. A web browser's most basic function is handling these requests and responses (the OS usually handles TCP drivers and below).
I suppose the most basic way you could handle this, is to have any text-based comm channel between devices. Assuming you have control of hardware on both sides. It could be as trivial as a USB virtual COM port, and then it could run HTTP directly (no IP/port connection, no routing, no network state, just a fixed hard pipe), or via a thin interface (say,
https://en.wikipedia.org/wiki/Serial_Line_Internet_Protocol and relatives).
Alternately, you can ask your, whatever software people you're working with, to de-abstract
the fuck out of their interface
, and just give you a sequence of commands to operate on. I guess they're working on a server backend or client browser/app API sort of level, which means you need some kind of interface similarly accessible for them to work with, and that will depend on what's available. I think even at the app level, there are ways to access serial ports, so you could have for example a cell phone with a USB-serial adapter plugged in and connect through that. A simple packet encoding for commands and/or data would suffice for communication between the app and the attached device.
Serial of course is plain text over wires, so isn't exactly secure, just to make that clear. That doesn't mean it's an automatic fail, it just means it needs to be physically inaccessible, and perhaps EMI-invisible (well enough shielded) too.
There are also higher-level versions, like serial over Bluetooth, or WiFi obviously, which need some means of identifying, connecting or attaching device(s), but which AFAIK can do this as simply -- in high-level terms. These might already be available on a platform, and otherwise there are USB Ethernet adapters for example.
Tim