|
|
|
|
|
|
by matt_kantor
4225 days ago
|
|
|
> and redirect web traffic from HTTP to HTTPS. The original post [advises against this][1]: > Redirects are discouraged since they allow sloppy/bad client behaviour without providing any clear gain. Clients that rely on redirects double up on server traffic and render TLS useless since sensitive data will already have been exposed during the first call. [1]: https://github.com/interagent/http-api-design#require-tls |
|
|