Missing https protocol to protect privacy and integrity of the exchanged data


Rule ID: missing-https-protocol

This rule determines if the current page is using https protocol. HTTPS verifies the identity of a website or web service for a connecting client, and encrypts nearly all information sent between the website or service and the user. This protection is validated by the SSL certificate. Before the web browser fetches the data from the server, it fetches the SSL certificates to verify the identity of the server.

How to fix it

  • The website should have a valid SSL certificate and served over secure connection using https protocol.


Security, Best Practice, SiteLint