I have been holding off development of my web application because I have to tinker with security between frontend and backend.
When I add certificate, it gives me difficulties even in testing environment and I don’t like to mess with openssl certification and stuff. In a production environment you would have to buy a real certification which costs a yearly fee. I could make a self-signed certificate in my testing environment but it would make big scary warning even in chrome.
I am working on it, the first thing I have to make the warning in Postman disappear and let me conduct testing on my REST api again.