MX_GX
August 9, 2022, 6:23pm
1
Chrome, Edge, etc. reports this site
http://ai2.appinventor.mit.edu/ as INSECURE.
Qualys and SecureScorecard, is giving the appinventor IDE site, a "F" grade. Please remediate ASAP.
Taifun
August 9, 2022, 6:31pm
2
See this thread for a detailed explanation
As far as I know, MIT has not yet enabled https access to the ai2 instance (ERR_CONNECTION_CLOSED)
The only solutions that I can think about are:
Use a VPN or proxy to bypass that limitation and access to non-secure sites (it may not work depending on how the network was configured)
Wait for MIT staff to allow SSL connections (not sure when it will be available)
Use an alternative site based on ai2 which supports https, like kodular.io (not the same ai2 platform, but will get the job done)
P…
Taifun
This blog post by Jeff Schiller is also relevant. We're in the process of testing a new companion (see here ) that will allow us to switch the site over to HTTPS.
2 Likes
Please search the forum before you ask any questions.
Why is there no https in App Inventor?
People are asking "Why is MIT App Inventor insecure?" What they are typically referring to is the fact that the server at ai2.appinventor.mit.edu does not support the https (secure http) protocol. Attempting to browse to https://ai2.appinventor.mit.edu brings up the message “this site can’t be reached”. So people need to instead connect using http. But with Internet security becoming a larger and larger concern, browser vendors are increasingly encouraging…