So for the past couple days or so, my Recently Played and My Favorites carousel bar things have been failing to load, and just stalled completely. My Robux count and notification list also doesn’t load in the home page
It has been happening fairly recently almost every time I go to my home page, with no steps needed to repro. All other pages in the Roblox site load fine, and every other site seems to also.
Nothing much more to it, but pretty annoying when it stalls randomly and I have to refresh the page a few times.
Bug screenie:
This is subjective, but I use a chrome extension called HTTPS Everywhere that automatically redirects me to the HTTPS version of sites, if possible. See if getting that helps your case.
Simply typing roblox into Google and the autocomplete does www.roblox.com, but it does not specify whether it’s directing to https or not.
Typing www.roblox.com manually into the search bar produces similar results.
If internals of the site like this don’t work on http, isn’t it possible for Roblox to block or redirect non https connections? (I’m not sure if the web api allows http itself)
For security reasons, you really shouldn’t be letting the website to load under http at all. If even one page load gets through with the session cookies under standard http, the site will be vulnerable to MITM attacks.
Is there any reason why the session identifier cookie isn’t marked as Secure (only transferred over https)?
