Skip to content

Ensure HTTPS #33

New issue
New issue
Open
Open
Ensure HTTPS#33
@augustak

Description

@augustak
augustak
opened on Feb 14, 2022

We should not accept usage of HTTP protocol in api_endpoint in credentials file. Although the API will never accept HTTP, users might incorrectly put HTTP in the credentials file. We should make sure to never send anything over HTTP.

Solution:

  • Throw when HTTP is detected in api_endpoint
  • Support specifying endpoint without protocol so that we can construct the correct HTTPS version in code. This would be a breaking change without backwards compatibility. I suggest supporting both ways of specifying api_endpoint while we are deprecating the current way of doing it.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions