re: Should a new webapp run on both http and https protocols? VIEW POST


Your apps should use only HTTPS - especially if there is any kind of authentication involved on your front-end.

Not only can HTTP traffic be captured and read by anyone with access to your network, increasingly web services and technologies are starting to force people to use HTTPS;

Progressive Web Apps - an awesome new feature that lets users install your website as an app - requires HTTPS and certain top level domains (TLDs) such as .dev require that HTTPS be enabled for any domains with that TLD.

Code of Conduct Report abuse