I would like to request a feature that might help increase the security of FreePBX.
FreePBX provide the tools to enable HTTPS for the GUI. However, the implementation may fall short as some people will only type the domain name (domain.com) without the “https://“ or the “http://“ which may put them at security risk (injection, sniff).
Suggested solution:
Provide an option in the GUI (System Admin >> HTTPS Setup) to enable / disable traffic redirection from HTTP to HTTPS