I have to admit that I generally always set up HTTP to HTTPS redirects for any site I set up and had not really thought about the potential downsides of doing this. The following blog post highlights why using HTTP to HTTPS redirects is problematic for API endpoints.
Have never really thought of this.
One of those. Yea that makes total sense moments.