I wonder why the connection to Glitch website is non-secure. Surely we as users will feel more comfortable passing our login credentials via a channel that is encrypted by a secure certificate. The developers can argue that Flash might not support the encrypted connection. But we still must be able to login the website (before entering the game world) by using the secure connection and then switch to the non-secure port to make Flash happy if necessary.