HTTP to HTTPS Redirect Not Enabled
Medium Web Application Scanning Plugin ID 112544
SynopsisHTTP to HTTPS Redirect Not Enabled
DescriptionHTTPS is enabled on the website however HTTP requests are not redirected to HTTPS. Communications are not encrypted if users doesn't explicitly access to HTTPS version of the website.
SolutionEnable HTTP to HTTPS redirect for all requests. Besides redirects if HTTP Strict Transport Security (HSTS) is not implemented it's highly recommended to enable it.