DPLA Launches Full Support for HTTPS


DPLA is pleased to announce that the entirety of our website, including our portal, exhibitions, Primary Source Sets, and our API, are now accessible using HTTPS by default. DPLA takes user privacy seriously, and the infrastructural changes that we have made to support HTTPS allows us to extend this dedication further and become signatories of the Library Digital Privacy Pledge of 2015-2016, developed by our colleagues at the Library Freedom Project. The changes we’ve made include the following: Providing HTTPS versions of all web services that our organization directly controls (including everything under the dp.la domain), for both human and machine consumption, Automatic redirection for all HTTP requests to HTTPS, and A caching thumbnail proxy for items provided by the DPLA API and frontend, which serves the images over HTTPS instead of providing them insecurely.
From Digital Public Library of America » Blog Archive » Open, Free, and Secure to All: DPLA Launches Full Support for HTTPS