Would love to see this. Recently, Firefox has added a new prompt on login forms which indicates that any http site is insecurely handling said login - including this one. All Firefox users of this site are currently being greeted by this prompt, which is clearly going to be bad for business (and your reputation) - Chrome will likely follow suit in not too long. Do it right, get HTTPS set up and going. As far as options go, Let's Encrypt provides free 90 day certs which you can rotate regularly.