💭 python 3.x - FastAPI redirection for trailing slash returns no...
===================================================================

!https://stackoverflow.com/questions/63511413/fastapi-redirection-for-trailing-slash-returns-non-ssl-link

Date: July 28, 2023

FastAPI redirection for trailing slash returns non-SSL link
 When we call an endpoint and a redirect occurs due to a missing trailing slash. As you can see in the image below, when a request is made to https://.../notifications, the FastAPI server responds w...
 Stack Overflow · stackoverflow.com [1]

I am trying to use htmx on a new fastapi site for my thoughts, and have been hitting this error.

``` js
Mixed Content: The page at 'https://front.mydomain.com/#/clients/1' was loaded over HTTPS, but requested an insecure resource 'http://back.mydomain/jobs/?_end=25&_order=DESC&_sort=id&_start=0&client_id=1'. This request has been blocked; the content must be served over HTTPS.
```

## What is happening

I have an htmx component that gets the current users name, but if they are not logged in the backend redirects to a login form.

``` html

 get me

```

But for some reason when the front end gets this redirect, it tries to do it through http, and flags it as insecure.

## The solution

To solve this issue, the post directs to set the `--forwarded-allow-ips` to '*'

``` bash
uvicorn thoughts.api.app:app --port 5000 --reload --log-level info --host 0.0.0.0 --workers 1 --forwarded-allow-ips '*'
```

!!! note

 This post is a thought [2]. It's a short note that I make
 about someone else's content online #thoughts [3]

References:
[1]: https://stackoverflow.com/questions/63511413/fastapi-redirection-for-trailing-slash-returns-non-ssl-link
[2]: /thoughts/
[3]: /tags/thoughts/