Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

You can’t make this decision until you know how many customers are on http and how lucrative they are .

Breaking an API because you read a blog post is a bad idea



You can only do it for new customers, though. Just save the list of API keys used over HTTP, then whitelist those who earn more than $xxx/year.

Then you can work with those customers to help them upgrade their clients to HTTPS.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: