The API is now HTTPS-only. If you go to http://api.hubski.com it will either give you the main page, or the 404 page. Only https://api.hubski.com will work. Going to http will very intentionally not redirect to https, for security reasons. When I get around to to it, I'll make http://api.hubski.com return a true 404 or 5xx code.
This will let us do simple token authentication.
And yes, the cert is presently invalid. I'll fix that soon.
So, my next steps are to fix the cert, move user data into SQL, and add a mechanism to login in via the API and get a token, which you can then pass to get private data like mail.
Then, we can make endpoints for all data, including private data. Then, once endpoints exist for all data, we can make things like static sites and mobile apps.
I'm still really busy, so this is all going slower than I'd like. Such is life.
Feel free to be slow about it, but if you have a list of endpoints and have no actual preference in which order you do them, could you prioritize endpoints for what users are following other users and what tags they are following? Again, take your time, I am extremely busy too so the idea I have will probably not start being written for another month or two even if you published it today, just figured it might help you decide which endpoints to start with.