Skip to content

Enforce HTTPS on Production Server #98

New issue
New issue
Closed as not planned
#194
Closed as not planned
Enforce HTTPS on Production Server#98
#194
Assignees
so77nava
@carl-egge

Description

@carl-egge
carl-egge
opened on May 19, 2025

User story

  1. As a user accessing the production server,
  2. I want the server to use HTTPS and redirect all HTTP traffic to HTTPS,
  3. So that communication is secure by default.

Acceptance criteria

  • Criterion 1: The production server is configured with a valid, free SSL/TLS certificate (e.g., via Let's Encrypt).
  • Criterion 2: All HTTP requests are automatically redirected to the HTTPS version of the same URL.
  • Criterion 3: HTTPS is enforced for all exposed endpoints, including static frontend and backend APIs.
  • Criterion 4: Certificate renewal is automated or clearly documented.

Definition of done (DoD)

  • Documentation is updated to include the new feature
  • Another SD, not the implementer, has reviewed the feature using the documentation.
  • GitHub actions workflows for linting pass
  • Feature branch has been merged and deleted

DoD general criteria

  • Feature has been fully implemented
  • Feature has been merged into the mainline
  • All acceptance criteria were met
  • Product owner approved features
  • All tests are passing
  • Developers agreed to release

Metadata

Metadata

Assignees

Labels

No labels
No labels

Type

No type

Projects

amos2025ss02-feature-board

Status

Feature Archive

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions