Hey all Before I go and file a ticket I wanted to check if t kotlinlang #ktor

Channels

fluid-libraries

jhipster-kotlin

effectivekotlin

effective-kotlin

android-architecture

algolialibraries

stayhungrystayfoolish

pattern-matching

kotlin-data-storage

skia-wasm-interop-temp

squarelibraries

beepiz-libraries

cscenter-course-2016

kotlin-foundation

compose-android

lambdaworld_cadiz

kotlin-pakistan

java-to-kotlin-refactoring

event21-community-content

fb-internal-demo

kotlinprogrammers

kotlinx-datetime

framework-elide

github-workflows-kt

library-development

arrow-contributors

spring-security

pocketgitclient

domain-driven-design

swiss-user-group

refactoring-to-kotlin

ohio-kotlin-users

introduce-yourself

kotlin-by-example

kotlin-multiplatform-contest

graviton-browser

tricity-kotlin-user-group

kotlin-in-action

android-databinding

kotlintest-devs

compose-desktop

cincinnati-user-group

codemash-precompiler

kotlingforbeginners

prozis-android-backup

realworldkotlin

connect-audit-events

russian-kotlinasfirst

androidgithubprojects

intellij-tricks

machinelearningbawas

swagger-gradle-codegen

100daysofkotlin

competitive-programming

compose-ui-showcase

androidx-xprocessing

navigation-architecture-component

strife-discord-lib

embedded-kotlin

image-processing

myndocs-oauth2-server

leedskotlinusergroup

kotest-contributors

practical-functional-programming

kotlinultimatechallenge

kotlinforbeginners

competitivecoding

100daysofkotlin-2021

k2-early-adopters

refreshversions

language-evolution

jvm-ir-backend-feedback

python-contributors

codingconventions

sofl-user-group

getting-started

language-proposals

intellij-plugins

Title

# ktor

t

Todd

11/03/2023, 3:19 PM

Hey all! Before I go and file a ticket, I wanted to check if there is a reason why ktor forces the connection to your sever to be https in order to use the HSTS plugin or Secure flag on Cookies? My server runs behind a reverse proxy and the connection between the proxy and my server is http. However, I still would like to use both these things as they still provide the same value in this configuration as they would if browser clients connected directly to my server. HSTS https check Secure cookie https check

Currently I just copied the entire HSTS plugin and removed that if check. Replacing all the code for cookies would be a lot more work.

I found issues for these: hsts secure cookies

a

Aleksei Tirman [JB]

11/06/2023, 9:37 AM

I don't think there is a particular reason for it. That's just how it was implemented.

👍 1