Require authenticated origin for geolocation

Given I think we should reconsider
whether to expose geolocation to unauthenticated origins. I don't
think this was duly considered at the time the API was released.

Furthermore, I think that if we agree this is a problem, we could
create a plan for phasing out support where no TLS is involved.

1) Start warning for usage right away.
2) Have developer evangelists spread the date when it will be disabled
(end of 2015?).
3) Disable it.


Received on Saturday, 27 September 2014 07:23:19 UTC