Start a personal dev blog on your domain for free with Hashnode and grow your readership.
Do you force SSL in your web app?
Yes
89%
No
11%
72 votes · Closed
Getting an SSL cert via LetsEncrypt is easy. I don't think there is no reason not to use SSL by default. What do you guys think?
TJ
Building Sparkle ✨ for Laravel | Echo Labs | Curology
May 19, 2016
I put SSL on everything except my client dev server. I use LetsEncrypt for most things but you can get super inexpensive basic validation SSL certs from Namecheap. I buy all my paid for SSL certificates from them and the process has been absolutely painless.
Michael J. Ryan
Alpha Geek
May 23, 2016
Let's encrypt once setup is really painless... no excuse not to these days.
Adam Listek
Owner and web developer at listekconsulting.com and weekly podcaster at bitvbyte.com
May 19, 2016
I am moving all of my sites over to SSL using LetsEncrypt with CloudFlare and strict mode. Once that is done, I am turning HTTP/2 on for everything and starting to tune for that.
At this point, I don't see a reason not too unless you need compatibility with much older clients and you need a more expensive cert.
-Adam
Mario Giambanco
Director of User Experience Development
May 19, 2016
http://searchengineland.com/google-starts-giving-ranking-boost-secure-httpsssl-sites-199446
The article is a bit old, but Google and I'm sure Bing now also, favor SSL sites over non.
I prefer to develop on a live cloud server instead of locally - then I'm always an internet connection away from my work and it saves me against local hardware failure, but be it LetsEncrypt or a SSL certificate from GoDaddy or the like, it's really not terribly expensive for an SSL cert or a wild card SSL cert now a days.
With "most" sites now collecting at least "some" personal information - it's just better to be safe then sorry.
Sergio
Web Developer & curious mind
May 19, 2016
I usually don't put SSL on the websites because at the moment the cost it's no so cheap to put in all the webpages. But i don't know about LetsEncrypt and for now take it in consideration, if can be easy to make an SSL certificate and not cost additional, why no? :)
TJ
May 19, 2016
$9/yr for base domain validation https://www.namecheap.com/security/ssl-certificates/domain-validation.aspx
Sergio
May 19, 2016
Thanks for the info, it's interesting to know for more delicated apps or websites :)
Alistair Macdonald
JavaScript Applications: Angular, Meteor, Backbone
May 30, 2016
I bought an SSL cert for my self hosted Meteor site, that was a fortnight ago and I spent the day trying to hook it up, it's so painfully complicated (for me) trying to combine nginx and meteorjs that I gave up and now am looking at hosting on Galaxy instead because SSL is the only way to go!
Atef Ben Ali
Software Developer
May 26, 2016
Installing a LetsEncrypt ssl cert on windows is so painful. but it's still a useful stuff.