Force redirect to https if user accesses insecure wallet.zp.io domain
Opened this issue · 0 comments
thehogfather commented
It is possible to visit the wallet.zp.io subdomain without https. As a user, I expect that visiting http://wallet.zp.io always redirects to https://wallet.zp.io.
Note that this might appear to work in chrome (if you have previously visited the https version of the site). What is needed is a similar level of redirect done for the main zp.io domain.