HTTP Allowlist
Supported on: Microsoft Edge version 123, Windows 7 or later
Registry
HKLM
Software\Policies\Microsoft\Edge\WebView2 HKCU
Software\Policies\Microsoft\Edge\WebView2 Options
List (registry values) list
- list under
Software\Policies\Microsoft\Edge\WebView2\HttpAllowlist Description
Setting the policy specifies a list of hostnames or hostname patterns (such as '[*.]example.com') that won't be upgraded to HTTPS. Organizations can use this policy to maintain access to servers that don't support HTTPS, without needing to disable "HttpsUpgradesEnabled". Supplied hostnames must be canonicalized: Any IDNs must be converted to their A-label format, and all ASCII letters must be lowercase. Blanket host wildcards (that is, "*" or "[*]") aren't allowed. Instead, HTTPS-First Mode and HTTPS Upgrades should be explicitly disabled via their specific policies. Note: This policy doesn't apply to HSTS upgrades. Example value: testserver.example.com [*.]example.org