In general: the usage of HTTP is not recommended. Please use HTTPS.
Upon using HTTP outside the localhost network the password will now be transmitted in clear text. A notification will show up when switching to a login screen that informs the user about his/her password will be sent in clear text.
The reason is that modern browsers won't allow the usage of its crypto APIs when using HTTP: https://developer.mozilla.org/en-US/docs/Web/Security/Secure_Contexts
In general: the usage of HTTP is not recommended. Please use HTTPS.
Upon using HTTP outside the localhost network the password will now be transmitted in clear text. A notification will show up when switching to a login screen that informs the user about his/her password will be sent in clear text.
The reason is that modern browsers won't allow the usage of its crypto APIs when using HTTP: https://developer.mozilla.org/en-US/docs/Web/Security/Secure_Contexts
use https