Remove ruleset for myfitnesspal.com

[mvhirsch]

Hi, something I would never recommend, but please remove the redirection ruleset to HTTPS for myfitnesspal.com.
The reason is simple: myfitnesspal.com supports HTTPS only on it's homepage: https://www.myfitnesspal.com
But after logging into it's service, they're forcing a redirect to HTTP (unsecure). So a typical login on looks like the following:

1. Open http://www.myfitnesspal.com
2. Redirect to https://www.myfitnesspal.com (by https-everywhere)
3. Login using private credentials (successfully)
4. Redirect to http://www.myfitnesspal.com/private/member/area (by myfitnesspal)
5. Redirect to https://www.myfitnesspal.com/private/member/area (by https-everywhere)
6. Repeat steps 4-5 until browser refuses to follow (circuit breaker)

This renders using myfitnesspal useless. Disabling https-everywhere works, but then I disable the whole plugin :-(

Could you please remove the rule for myfitnesspal.com (until they manage to use HTTPS in their private member area too)?

@mvhirsch https://github.com/EFForg/https-everywhere/blob/master/src/chrome/content/rules/MyFitnessPal.com.xml

We do not have a www target. Not sure what is causing the redirect for you.

[mvhirsch]

@koops76 it doesn't depend on www.. Requesting http://myfitnesspal.com will redirect to http://www.myfitnesspal.com (triggered by myfitnesspal).
The problem is, that after this redirect https-everywhere then redirects to https (which is fine too).

But after logging into the website, myfitnesspal forces a http (unsecure), but https-everywhere kicks in again and redirects to https ... causing an infinite loop.
Disabling the plugin solves the problem temporary.

[cschanaj]

duplicate #11029, fixed in #11033. this problem should be resolved when 2017.8.15 is released.

Also, the redirect is done on the server side by myfitnesspal.

$ curl -I http://www.myfitnesspal.com 
HTTP/1.1 302 Found
Cache-Control: private, no-cache, no-store, max-age=0, must-revalidate, proxy-revalidate
Content-Type: text/html; charset=utf-8
Date: Wed, 16 Aug 2017 09:31:19 GMT
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Location: https://www.myfitnesspal.com/

[J0WI]

closed by #11033

[mvhirsch]

Thank you very much! I will test it as soon as the update gets available for firefox :-)