This I've done. The Browser still first connects to https first and then using wss.

atm the way I try to establish:

• Apache server send UNA-Page (dudu.social) to client
• Javascript on client connects via IPv4 to Apache reverse proxy via https://jot.dudu.social using secret
• Reverse Proxy terminates the SSL-Connection and connects to jot-server (same server. So can be unencrypted) what is listening in an IPv6-Address

The Problem is CORS:

• jot-Server is not sending CORS headers, so the reverse proxy must do
• When Apache sends the CROS header Access-Control-Allow-Origin with value '* ' the browser in the JS-Console shows error that Permission/Credential is not supported
• When Apache does not send the header in the console shows that i can not connect to wss://jot.dudu.social because of missing CORS header

I hope this explains the problem.

PS: A description of CORS is https://en.wikipedia.org/wiki/Cross-origin_resource_sharing