Curious on some opinions. The Professional Plan offered by Posit fo hosting shiny apps allows for authentication. That could be useful if building an app intended for production and a subscription-based service.
It also offers custom domains, which is also good to move away from the unattractive or hard to use default URLs assigned when hosting. However, the app does NOT support HTTPS when served from a custom domain.
This seems at odds with the whole point. If I build and deploy an app that requires authentication, but that authentication cannot be done securely, how do my users trust the system when there is no security?
Maye others have thoughts on how to solve this?