Firefox Requiring Secure Context for New Features

Thu, Jan 18, 2018

Mozilla released a statement about how they plan to play an important role in getting more encryption out there. Especially since services like Let’s Encrypt make it blatantly easy (and free of charge) to obtain a properly signed certificate Mozilla announced that

Effective immediately, all new features that are web-exposed are to be restricted to secure contexts. Web-exposed means that the feature is observable from a web page or server, whether through JavaScript, CSS, HTTP, media formats, etc.

This is awesome! Want that new shiny property that makes your website look all flashy? You better serve it via SSL then. I actually do know quite a few marketing-type “webdesigners” that have no clue about proper website security. Also they usually don’t give a fuck. “Why should I go through the trouble and serve everything via SSL? I’d rather spend time on implementing <insert useless feature that makes the website even more cluttered here>.”

Well now you have to care about encryption if you want the masses to see your stuff. Very nice move from Mozilla.