Customer login and protected gallery access are now always encrypted
The update we just published this morning forces secure (HTTPS) connections on pages where a password is asked, just like on payment pages that already had that protection.
On websites that use their own custom domain, this involves a temporary domain change to a PhotoDeck URL. A secure connection always requires a security certificate specific to that domain, and we don’t have certificates for our members’ domains. We direct back to the website custom domain for pages that are not sensitive, to maintain the website branding. Ultimately our goal is to provide security certificates for custom domains without requiring members to purchase the certificates themselves, but that will be for a bit later ;)