@Gargron@mastodon.social When you place the cursor at the left side of the url so you can pasted in "archive.is/" it mangles it now.

@Gargron@mastodon.social do you consider this to be false? A site can be insecure even over HTTPS. It is insecure if it is over HTTP, and firefox is displaying this for me:

@Gargron@mastodon.social you can activate it again by going to about:config and searching for browser.urlbar.trimURLs, set it to false.

@Gargron@mastodon.social imho it's a good step, as there still are plenty of websites and systems that do not use https.

You might change it in a config but you 've already known this.

@Gargron@mastodon.social Interesting, my firefox is still showing https yet, I just got an updated version of the browser.

@Gargron@mastodon.social Yeah ! I noticed that too with the version 140.

@Gargron@mastodon.social Oh ... yeah, yesterday i noticed an odd behaviour, when i tried to "mark and copy" an URL from the adress bar. Suddenly, the text jumped sideways. It never did that before.

I am not fond of that change too. It is an attempt to hide information, and it does not matter, if there's some kind of symbol for it.

@Gargron@mastodon.social In my case, what you describe after the update to 140 did not happen. But there are one (or two) settings relevant in the About:config screen.
I once changed the browser.urlbar.trimURL setting to "False" (as it should be :-) ). That setting was not altered to the default "true" in my case.
That setting alters both the displaying of http:// and https:// to display it or not.

There is also the setting: browser.urlbar.trimHttps
That only focuses itself to https. 1/2

@Gargron@mastodon.social
I get a pop-up if I try to go to a site without https, so showing it is redundant.

Not sure if that's a Firefox thing, or one of the plugins.

@Gargron@mastodon.social

Yea, it should be an option burred some place. But I got over it. I'm bothered that sometimes I cut&paste the URL and it get the https:// though it wasn't highlighted when I cut it.

@Gargron@mastodon.social and it doesn't help that the padlock and other components on the address bar is just slightly darker grey on a grey background (at least on my system, with Firefox 140.0).

@Gargron@mastodon.social Why show the protocol at all if they’re not going to differentiate? 🤔

@Gargron@mastodon.social
I use the extension https everywhere.
So I get notified when a website is only http. Might help your problem.

@Gargron@mastodon.social Must have been part of the update I keep refusing; mine still shows the https. Good to know. (I'm running 137.0.2)

@Gargron@mastodon.social , I would have thought there is a setting for this. In @Vivaldi@vivaldi.net there is.

@Gargron@mastodon.social almost positive showing full urls int he address bar always is a flag? it definitey is in chromium.

I get what you're saying though... I feel (and have long felt) quite strongly that there is zero reasonable case for obscuring any one part of a given url/path and the only result is this sort of confusion.

@Gargron They actually do the opposite now (just like safari did for years): encryption is now the default, and it’s showing a big warning when https is not supported

@Gargron@mastodon.social I think browsers started removing https indicators around 2019. Generally people don’t notice something like the padlock is missing, so they are instead going to mark it red if site is not https. As certificates have become free and something like 99% internet is https I think that makes 100% sense.

@Gargron@mastodon.social But the red line through the padlock, “not secure” callout, and “http://” in the address bar is very in your face when visiting a connection that’s not secure.

@Gargron@mastodon.social I dunno, it has padlock right before the domain.

@Gargron What frustrates me most is if you select it and copy and paste it, the "http://" or "https://" is in the pasted text.
How do I copy without that? You cannot. It is bad user experience to put something in your paste buffer that you didn't highlight. (I also felt that it was good for users to see "https://" because it reminds people that there is a network here. It also opens the door to using other protocols without confusing people too much.)

@Gargron@mastodon.social it’s a little shield on the iOS version and I’m pretty happy with that. I’m sure I get a warning if I go to a site without a certificate too, that is http:// is notified, not https:// these days of ubiquitous encryption

@Gargron@mastodon.social agreed. 100%! This is a bad UI change.

@Gargron@mastodon.social Secure is the default expectation. Open a http site and see how the browser behaves. I would expect a lot of clear signs, that the page is insecure without needing to see http in the address bar.

@Gargron@mastodon.social that's because all the others do it that way now...