Stop brave from redirecting http://localhost to https://localhost

fmarier · June 20, 2022, 4:32pm

There are three things I can think of that will upgrade top-level HTTP URLs to HTTPS:

HTTPS Everywhere: This is based on a list of rules and so it wouldn’t cover localhost. Also, it’s covered by the Upgrade connections to HTTPS toggle in the Shields settings.
“HTTPS only” mode: This upgrades all HTTP URLs to HTTPS, no rules required. This is controlled by the Always use secure connections toggle in the Security settings.
HTTP Strict Transport Security (HSTS): This is a response header that a site can supply which will tell the browser that future visits need to be over HTTPS. This is controlled by the site and will be remembered by the browser. It can be cleared via brave://settings/clearBrowserData (I think it’s the Cookies and other site data option) or via brave://net-internals/#hsts.

My guess is that you’re looking at #3 and that you’ve had in the past a locally-running web service that returned an HSTS header with a very long expiry time.

Topic		Replies	Views
Localhost connection automatically upgrades to HTTPS Desktop Support windows	3	1441	August 18, 2022
Disable forcing HTTPS Browser Support windows	22	1195	January 12, 2024
Disabling Upgrade to HTTPS doesn't work and Brave still forces all sites to https Desktop Support windows	2	869	October 10, 2021
HTTPS by default message showing everytime I open the browser Browser Support windows	2	1368	July 16, 2022
Disabling "Upgrade connections to HTTPS" is not working Desktop Support linux	3	1251	June 22, 2020
Can't turn shields off on localhost Web Compatibility bug	10	4816	January 27, 2019
Disable HTTP support completely. Only ever use HTTPS Desktop Support windows	7	597	November 23, 2023
Cannot use http://localhost:8080 Desktop Support windows	7	12648	January 5, 2021

Stop brave from redirecting http://localhost to https://localhost

Related Topics