The problem with HTTPS and HTTP

my current front-end page is http, and then I will store userId in localStorage when I log in for the first time.
because of program defects, as long as localStorage.setItem ("userId",55). If you refresh it, you will be able to display 55% of the private information.
you don"t need an account password, which means: you can see all the user information as long as you have a set of account passwords that you can log in to.

if I use https. Although the requests are encrypted, the front-end program has not changed, so if I continue to localStorage.setItem ("userId",54), I can still see 54 private information.

Https http

Mar.13,2021

as you said, the network transmission part encrypted by https has little to do with the application layer

Previous: Problems with setting expiration time using jwt

Next: Mtime and ctime of Linux

I would like to ask whether the request parameters of POST in HTTPS are all encrypted.
if I use https, I can t see these things in the red box in the Network of my F12. ...

Https http

Mar.13,2021
Can https maintain a persistent connection?
No problem under the http proxy, http protocol with connection pool, proxy can forward the request to each other after receiving the request. With keepalive, the persistent connection can be maintained but HTTP 1.1 200 Connection Established is r...

Https http

Mar.23,2021
With regard to cross-domain, am I calling a third-party interface cross-domain?
there are many questions about how to solve cross-domain problems, but I have always had a question, such as the figure below. Find a bunch of them on the Internet to explain cross-domain problems web http: store.company.com dir ... according ...

Https http html

Mar.23,2021
A question about axios cross-protocol requests
Project uses vue-cli family bucket. Since the project has just been upgraded from http to https, the axios, used for asynchronous request has been tested to see if there is a problem with API access. It is found that there is an inexplicable problem: th...

Axios vue.js https http

Mar.28,2021
HTTPS access
I built a WEB Server, on the embedded device to access through HTTPS, but I found that if the page is not refreshed every few seconds, and then click on the page, the lower left corner of the browser will prompt "secure connection is being established "...

Html linux tls https http

Mar.28,2021
How to prevent github pages from using https automatically
configure your own domain name www.rychou.xyz in github pages, and do not use the Enforce HTTPS option. Visiting http: www.rychou.xyz at this point will automatically switch to using https. ajaxhttphttpshttp after searching around google, I ...

Github github-pages domain-name https http

Apr.11,2021
How is pre-master-key generated?
according to https s explanation, the generation of master_key requires random_S,random_C and pre master key. but I see that there are basically no articles on the Internet to explain how pre master key is generated, basically computing and generatin...

Https http chrome

Oct.28,2021
Tomcat uses https access
I found Aliyun s free ssl certificate from the Internet to test the https URL, but according to the online tutorials, I can t access it with https all the time. What s the reason for not adjusting it? Still, you can only use http to access the URL. F...

Tomcat https http python

Feb.11,2022
The puzzle about url
I often find that the url of some projects developed with vue or react has strings similar to those in the figure like hash (there are also nails); at first I thought the id was generated with mongodb, but then I asked others that it didn t seem to be; ...

React.js vue.js https http

Feb.20,2022