Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

The demo site and docs are served over HTTP not HTTPS #220

Closed
nickjj opened this issue Feb 20, 2022 · 1 comment
Closed

The demo site and docs are served over HTTP not HTTPS #220

nickjj opened this issue Feb 20, 2022 · 1 comment

Comments

@nickjj
Copy link

nickjj commented Feb 20, 2022

Hi,

At the time of making this issue http://rodauth-demo.jeremyevans.net/ and http://rodauth.jeremyevans.net/ are being served over HTTP and are linked in the docs like this. Trying to visit the HTTPS version of your site resulted in an insecure certificate warning.

Given the nature of this library and general best practices it would be worth adding HTTPS support to your site. Without it, anyone who wants to demo this library with their own email address would result in the password being sent over the internet in plain text.
@jeremyevans
Copy link
Owner

The demo site is designed to be a demo, and doesn't send email, so you can use whatever test email addresses you like. It's currently served on a free Heroku plan, which doesn't support SSL. I'm not willing to pay money every month just for SSL support.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jeremyevans @nickjj