621fa92036
When a URL is prefixed with a TLS scheme, we should make sure that the remote provides a valid cert, even just for prefetches. Else MITM of such a site is trivial. This probably breaks some people with self signed cert, but the age where that was acceptable is past. We have free CAs now like Let's Encrypt. |
||
---|---|---|
.. | ||
auth | ||
inputs | ||
irc-events | ||
messageStorage | ||
packages | ||
auth.ts | ||
changelog.ts | ||
clientCertificate.ts | ||
dev-server.ts | ||
storage.ts | ||
sts.ts | ||
uploader.ts | ||
webpush.ts |