Missing header 'Upgrade-Insecure-Requests'
Some websites, even if the are accessed through 'https', will return 'location' headers, for redirections, which are not 'https' (http only then). This will raise a BrowserHTTPSDowngrade error.
By using 'Upgrade-Insecure-Requests' header in the requests, we can avoid such a situation. I don't know at what level this should be handled :
Also, should this header be sent only for https domains ?
Added core label
I think you should have a look at https://git.weboob.org/weboob/devel/blob/master/weboob/browser/profiles.py and define an
InsecureHTTPSprofile, no? Usage example is here.
I would not send it always for HTTPS connections, as it might actually have some side effects and downgrade some secure connections.
Mentioned in merge request !141
Status changed to closed by commit d4a6a487