Skip to content

Configuration: HTTP without HTTPS Redirect

Identifier: http_no_https_redirect

Scanner(s) Support

GraphQL Scanner REST Scanner WebApp Scanner ASM Scanner

Description

Check if the HTTP server redirects to HTTPS.

HTTP servers should redirect all traffic to HTTPS to ensure encrypted communication and prevent man-in-the-middle attacks.

Configuration

Example

Example configuration:

---
security_tests:
  http_no_https_redirect:
    skip: false

Reference

skip

Type : boolean

Skip the test if true.