Join GitHub today
GitHub is home to over 31 million developers working together to host and review code, manage projects, and build software together.Sign up
Consider excluding tzdb from HTTPS redirects #1319
I think it'd be a little bit weird to have a mixture of redirecting and non-redirecting paths. Ideally, clients should switch to HTTPS.
Plus, if we enable HTTP Strict-Transport-Security, we'd be in a position where browsers (and other HSTS-supporting UAs) would auto-redirect to HTTPS, but other UAs wouldn't, which would be even more weird, and be ~impossible to test.