This reference lists the web platform features available only in secure contexts — see Secure Contexts for a definition and more details.
Current features available only in secure contexts
This section lists all the APIs available only in secure contexts, along with browser versions the limitation was introduced in, as appropriate.
Note: Only the browsers that actually support secure contexts are listed in this document. See here for information on secure contexts support.
|Service Workers||40||17||11.1||44 (44)|
|Push API||42||17||No support||44 (44)|
|Payment Request API (and Basic Card Payment).||61||15||11.1||In development (behind the
|Credential Management API||51||No support||No support||No support|
|Web Authentication API||65||In preview (17)||In development||60 (60)|
|Storage API||55||No support||No support||51 (51)|
|Async Clipboard API||66||No support||No support||63 (63)|
|Background Sync (see
||49||No support||No support||No support|
|Web Bluetooth||56||No support||No support||No support|
|Web MIDI (see
||43||No support||No support||No support|
|Generic Sensor API||67||No support||No support||No support|
Secure context restrictions that vary by browser
Some browsers may decide to disable certain APIs in non-secure contexts or apply other restrictions/security measures, despite the spec not requiring them. This section lists any such differences existing in browsers.
Note: Safari and Chrome don't support the full secure contexts specification so APIs may work when using HTTPS iframes inside an HTTP page or pages that have an 'opener context' with an insecure page (this happens when an HTTP page uses
Window.open() or the
target attribute with a value of