We recently announced that all Yahoo Mail connections are now encrypted with HTTPS by default.
To support this move, we have also enabled HTTPS access to Yahoo Contacts and Profile APIs.
All developers using the Yahoo Contacts APIs and Profile APIs will need to make the following updates to their API settings by February 27, 2014:
The domain name social.yahooapis.com will remain the same.
As of February 28, 2014, we will limit all access to Yahoo’s Contacts APIs and Profile APIs to secure SSL connections only. No user data will be accessible over HTTP from this date onwards. If you don’t switch the access protocol to HTTPS, your users will not be able to access their Yahoo Contacts / Profile data via your service.
Thank you for supporting us and our users in making the shift to HTTPS.