Except there is no way to support HTTPs without ending up with people sharing https:// links that won't work for non-HTTPs users.

I really wish SSL/TLS would have used something like starttls. And yes, that means needing HSTS preload (or better yet a DNS-based alternative) to prevent downgrade attacks, but we do need that with https:// anyway.