https soon to become obligatory

- September 9, 2016

It looks like Chrome will start showing warnings for http pages with forms on them from the start of 2017 and eventually extend this to all http pages. If your website is still only available in http, it is time now to start making the switch.

The cost of SSL certificates used to be a factor, but there is now a free service available: Let's Encrypt

There are a number of things you need to be careful of when making a migration to https (this is not an exhaustive list):
  1. Every resource used on every page needs to be https or browsers will show a warning (this also includes external resources such as social buttons, ads or other widgets you might have built into your page).
  2. You will need to check your internal linking and transition to https links.
  3. It will help if you also change external links into your page to https, although this is only usually feasible for links you control directly, such as social media profiles, etc. 
  4. Using redirects to force https should be the last step. 
It is easy to make mistakes in a transition process, so make sure that there is a clear plan and checking for each step. We would typically recommend a two-step approach where the site is prepared for https and then tested in a live environment. Once this is confirmed as working, users can then be redirected. If you need help with this, get in touch. 

Read More