I have tried to find good answer for it, but I haven’t gotten good article about this topic.
Since there are 2 types of client applications (in bigger picture) – one that runs on server and one that you download and runs in your browser.
My question comes in about the one, that runs in your machine (that you download at first visit – Blazor WebAssembly to be specific).
Do I need to enable SSL (HTTPS) for this application or web server, that hosts this application as well or is it not needed in the end?
Does only having API connection encrypted be enough?
Yes, this is a cost saving masure, since this is for my hobby project and I would like to keep running costs as minimal as possible. But since I still exchange data, that should not be seen by 3rd party, this application needs to be secure.
To enable HTTPS I would need second Static IP, which is 3$ a month (which is not much), but again, it is additional cost for me, that I would rather not have.