The AppHost will crash if anapplicationUrl is configured with an unsecure transport (non-TLShttp) protocol.

This article explains how to allow unsecure transport in Aspire projects.

Symptoms

When you run an Aspire project with anapplicationUrl configured with an unsecure transport protocol, you might see the following error message:

The 'applicationUrl' setting must be an https address unless the'ASPIRE_ALLOW_UNSECURED_TRANSPORT' environment variable is set to true.This configuration is commonly set in the launch profile.

How to allow unsecure transport

To allow an unsecure transport in Aspire, set theASPIRE_ALLOW_UNSECURED_TRANSPORT environment variable totrue. This environment variable is used to control the behavior of the AppHost when anapplicationUrl is configured with an insecure transport protocol:

export ASPIRE_ALLOW_UNSECURED_TRANSPORT=true

$env:ASPIRE_ALLOW_UNSECURED_TRANSPORT = "true"

Alternatively, you can control this via the launch profile as it exposes the ability to configure environment variables per profile. To do this, consider the following example settings in thelaunchSettings.json file:

{  "$schema": "http://json.schemastore.org/launchsettings.json",  "profiles": {    "https": {      "commandName": "Project",      "dotnetRunMessages": true,      "launchBrowser": true,      "applicationUrl": "https://localhost:15015;http://localhost:15016",      "environmentVariables": {        "ASPNETCORE_ENVIRONMENT": "Development",        "DOTNET_ENVIRONMENT": "Development",        "ASPIRE_DASHBOARD_OTLP_ENDPOINT_URL": "https://localhost:16099",        "ASPIRE_RESOURCE_SERVICE_ENDPOINT_URL": "https://localhost:17037"      }    },    "http": {      "commandName": "Project",      "dotnetRunMessages": true,      "launchBrowser": true,      "applicationUrl": "http://localhost:15016",      "environmentVariables": {        "ASPNETCORE_ENVIRONMENT": "Development",        "DOTNET_ENVIRONMENT": "Development",        "ASPIRE_DASHBOARD_OTLP_ENDPOINT_URL": "http://localhost:16099",        "ASPIRE_RESOURCE_SERVICE_ENDPOINT_URL": "http://localhost:17038",        "ASPIRE_ALLOW_UNSECURED_TRANSPORT": "true"      }    }  }}

The preceding example shows two profiles,https andhttp. Thehttps profile is configured with a secure transport protocol, while thehttp profile is configured with an insecure transport protocol. TheASPIRE_ALLOW_UNSECURED_TRANSPORT environment variable is set totrue in thehttp profile to allow unsecure transport.