Providing Shiny Applications, RStudio Server, API and other web applications under a single HTTPS web address is possible with Open Source software. This how-to explains how to install Apache HTTP Server from scratch, create a self-signed SSL certificate, provide access to Shiny, RStudio, Plumber via HTTPS, and suggests some security measures to take.
No HTTPS, no security. It is a fact that data, credentials and all other sensitive information are at risk; this leads to legal issues as well as user trust issues. There are completely Open Source solutions for Shiny Server, RStudio Server and Plumber. In this article I describe the reasons why this is not an option, but an obligatory choice, the basics of operation, a reasonable analysis of the pros and cons of adopting this solution in terms of security, legality and performance.