Apprenda gives platform operators the ability to enforce SSL for all guest applications.
By default, the platform exposes both HTTP and HTTPS endpoints for guest application UIs and services. End users can request either endpoint at any time. When a platform operator enables platform wide SSL enforcement, the platform load manager component responsible for routing inbound requests to guest applications on content servers will respond to all HTTP requests with a 301 redirect to the corresponding HTTPS URL. This keeps the request intact, but causes the browser to connect via HTTPS in order to proceed.
SSL enforcement can be enabled or disabled in the System Operations Center by platform administrators under the Security settings section.