I use hotspot authorisation with external radius-server.
If unauthorised client try to open web-sites such as tut.by, mail.ru, etc(probably this sites close 80 port), he is forwarded to https://… and can’t be authorised.
But captive portal works.
In google chrome http redirects right