Currently when configuring an external survey http URLs are accepted. They should be rejected when parsing the survey configuration and fail loudly.
It looks like warning/erroring on http URLs was intended to become the default, but never quite implemented fully.
Some code to support this validation is still present and the frontend part is commented out.
- Outdated commented frontend code is removed
- Only HTTPS links are accepted when constructing ExternalSurveys in SurveyFactory
- Upon encountering an HTTP link in the config the survey validation fails and an error is logged