What’s wrong with the plaintext login if it’s https ? What’s the standard for that now ?