Ensure user-facing stuff is served over HTTPS

2025-04-23 07:50:23 +02:00 · 2025-04-23 07:50:23 +02:00 · e36e2256bc
commit e36e2256bc
parent b040366e65
1 changed files with 6 additions and 0 deletions
--- a/_components/navbar.php
+++ b/_components/navbar.php
@ -30,4 +30,10 @@ $path = strtok($_SERVER["REQUEST_URI"], '?');
 	{
 		elm.onclick = (event) => { event.preventDefault() };
 	});
+
+	// User-facing stuff really has no reason to be served over insecure HTTP.
+	if (location.host == "openwf.io" && location.protocol == "http:")
+	{
+		location.protocol = "https:";
+	}
 </script>