Mozilla announces that all new Firefox features are limited to HTTPS connections
Earlier this week, Mozilla announced that all future Web-based features must be available over a secure HTTPS connection in the future.
Anne van Kesteren, Mozilla Engineer and Author of Open Web Standards, said: “As soon as this statement takes effect, all new features exposed by the web will be confined to a secure environment.”
This means that if Firefox adds support for new standards/features starting tomorrow, and if the standard/feature communicates between the browser and the external server, those communications must be performed over HTTPS, otherwise, the standard/feature will not work Used in Firefox browser.
This decision does not affect existing standards/features, but Mozilla expects all Firefox features “to be considered based on this case” and will move towards a secure environment (HTTPS) in the future.
In addition to enforcing HTTPS rules for new standards/features, Mozilla understands that it has to change the everyday mindset and work habits of Web developers.
As a result, Mozilla also plans to add developer tools for future releases of Firefox for testing without the use of an HTTPS server. This will help developers deploy HTTPS-friendly sites and applications and even legacy features (WebVR, Payment Request API, etc.) that are not yet implemented in strict HTTPS mode in Firefox.
Source: BleepingComputer