Android clients can't connect to https://www.giantbomb.com because the server responds with a partial certificate chain. While I don't casually browse Giant Bomb with SSL, the premium podcast feed requires my podcast player to send my username and password in every request. I would rather not send my username and password in clear text, and auth.giantbomb.com echoes this by automatically redirecting non-encrypted requests to /login to the encrypted version.
For an analysis of SSL support on giantbomb.com, see https://www.ssllabs.com/ssltest/analyze.html?d=giantbomb.com
Log in to comment