Logins, HTTP/S Redirect

M

MetalgodZ

NES Member
Joined
Nov 15, 2007
Messages
3,049
Likes
428
Location
central MA
Feedback: 15 / 0 / 0
I'm seeing a bunch of people in threads here with login issues, and I've noticed one in particular recently that someone (moderator, administrator) might be able to fix.

Some of my old bookmarks were created without the "s" ("http://" instead of "https://") and the insecure pages do not show me logged in. I *can* log in on the pages, if I wanted to put a password into an insecure page, but it doesn't automatically push me to https. Manually adding the "s" drops me onto a page where I'm already logged in.

Auto-redirect might be something to consider, unless you've already done so and specifically chosen not to for some reason.
 
There is an add on called “https everywhere” written by the electronic frontier foundation. It will attempt to upgrade any site you visit to SSL. Think its available for Chrome and Firefox.
 
MetalgodZ said:
I'm seeing a bunch of people in threads here with login issues, and I've noticed one in particular recently that someone (moderator, administrator) might be able to fix.

Some of my old bookmarks were created without the "s" ("http://" instead of "https://") and the insecure pages do not show me logged in. I *can* log in on the pages, if I wanted to put a password into an insecure page, but it doesn't automatically push me to https. Manually adding the "s" drops me onto a page where I'm already logged in.

Auto-redirect might be something to consider, unless you've already done so and specifically chosen not to for some reason.
Click to expand...

A metric ton of people complained when we tried to force https so we decided to make it pseudo-optional.

I might revisit this given the increased acceptance at this point.
 
GomerPile said:
There is an add on called “https everywhere” written by the electronic frontier foundation. It will attempt to upgrade any site you visit to SSL. Think its available for Chrome and Firefox.
Click to expand...
It's installed. But I do enough work with self-signed and un-signed management pages that I either turn it off, or end up putting in dozens to hundreds of exceptions. It's an annoyance, but not a huge one.
sHORTY said:
A metric ton of people complained when we tried to force https so we decided to make it pseudo-optional.

I might revisit this given the increased acceptance at this point.
Click to expand...
Oh, FFS. Seriously? ::insert facepalm here::

Was it a cert issue that they were complaining about? I can't even think of a proper https implementation that drew my attention to it as it happened, over the past 4 or 5 years. [rolleyes][thinking]


(Yeah, I *could* fix my bookmarks and delete my browser history & cache and then log into the https again without using http, to update the default. It's just something I ran into and I wasn't aware that it'd already been addressed.)
 

Similar threads

"NES can't connect" Feb 12 evening shift.
Replies
15
Views
206
Gator9329
Gator9329
NES AP on my phone...something change?
Replies
6
Views
364
rebut
rebut
Did something change on the site settings?
Replies
4
Views
402
Boghog1
Boghog1
Unexpected database errors & blank site pages
Replies
9
Views
296
SwampYankee42
SwampYankee42
Forum Support Request: Twitter to X Preview Support in Postings
Replies
1
Views
265
safetyfirst2125
safetyfirst2125
Back
Top Bottom