Since SSL certificates are free these days (in this particular case, courtesy of Let's Encrypt), I've gone ahead and enabled HTTPS support, go ahead and try it out. You probably won't notice much difference aside from the padlock in the URL bar.
I believe I've worked out all the kinks, but for now the plain HTTP access works like it did before. Most likely I will redirect plain HTTP to HTTPS in the relatively near future. Let me know if you run into any issues in the mean time.