HyperText Transfer Protocol Secure (HTTPS) links in license headers?

[Lloyd]

Hi Mozilla Legal list,


While I was working on replacing 'http' with 'https' where appropriate
in some projects' documentation I'm involved with, I noticed that
https://www.mozilla.org/MPL/headers/ still uses http in the
"copy-and-pasteable license headers for Mozilla code".

Visiting http://mozilla.org/MPL/2.0/ does redirect to
https://www.mozilla.org/MPL/2.0/ as expected.

Is it time to update https://www.mozilla.org/MPL/headers/ such that
the templates are like the one below?

/* This Source Code Form is subject to the terms of the Mozilla Public
* License, v. 2.0. If a copy of the MPL was not distributed with this
* file, You can obtain one at https://mozilla.org/MPL/2.0/. */


Thank you,
--
I can't grow without light,
Lloyd
http://foolswisdom.com/

[Gervase Markham]

On 08/10/14 18:45, Lloyd wrote:
> Is it time to update https://www.mozilla.org/MPL/headers/ such that
> the templates are like the one below?

The advantage of HTTP is that still not all clients support HTTPS.
However, given that we are unilaterally redirecting to HTTPS, that's no
longer an advantage.

Still, I think the right time to do this would be when mozilla.org
starts using HSTS (which basically means "we're _never_ going back to
HTTP").

Also, filed https://bugzilla.mozilla.org/show_bug.cgi?id=1080475 while
checking to see if we do use HSTS.

Gerv