Is there a way to redirect an already logged-in user to https? I'm referring to when they click on a link to the wiki from some other non-wiki page. If they are already logged in but the link is http, then they say at http.
Related, is there a way to force https when logging-in and thereafter?
Thanks, Al
If you have wgSecureLogin set, then the users should get a "forceHTTPS" cookie when they login. When MediaWiki sees that cookie, and the current protocol is http, it will do a redirect to https.
I think that was introduced in 1.22, iirc.
On Thu, Aug 7, 2014 at 8:11 PM, Al alj62888@yahoo.com wrote:
Is there a way to redirect an already logged-in user to https? I'm referring to when they click on a link to the wiki from some other non-wiki page. If they are already logged in but the link is http, then they say at http.
Related, is there a way to force https when logging-in and thereafter?
Thanks, Al _______________________________________________ MediaWiki-l mailing list To unsubscribe, go to: https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
Thanks Chris, but I guess you are talking about $wgDefaultUserOptions. But, I'll have to upgrade.
On Thursday, August 7, 2014 9:44 PM, Chris Steipp csteipp@wikimedia.org wrote:
If you have wgSecureLogin set, then the users should get a "forceHTTPS" cookie when they login. When MediaWiki sees that cookie, and the current protocol is http, it will do a redirect to https.
I think that was introduced in 1.22, iirc.
On Thu, Aug 7, 2014 at 8:11 PM, Al alj62888@yahoo.com wrote:
Is there a way to redirect an already logged-in user to https? I'm referring to when they click on a link to the wiki from some other non-wiki page. If they are already logged in but the link is http, then they say at http.
Related, is there a way to force https when logging-in and thereafter?
Thanks, Al _______________________________________________ MediaWiki-l mailing list To unsubscribe, go to: https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
This can also be done at the webserver level. on apache you just need to redirect the vhost for http to https on 443
On Mon, Aug 11, 2014 at 5:32 AM, Al alj62888@yahoo.com wrote:
Thanks Chris, but I guess you are talking about $wgDefaultUserOptions. But, I'll have to upgrade.
On Thursday, August 7, 2014 9:44 PM, Chris Steipp csteipp@wikimedia.org wrote:
If you have wgSecureLogin set, then the users should get a "forceHTTPS" cookie when they login. When MediaWiki sees that cookie, and the current protocol is http, it will do a redirect to https.
I think that was introduced in 1.22, iirc.
On Thu, Aug 7, 2014 at 8:11 PM, Al alj62888@yahoo.com wrote:
Is there a way to redirect an already logged-in user to https? I'm
referring to when they click on a link to the wiki from some other non-wiki page. If they are already logged in but the link is http, then they say at http.
Related, is there a way to force https when logging-in and thereafter?
Thanks, Al _______________________________________________ MediaWiki-l mailing list To unsubscribe, go to: https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
MediaWiki-l mailing list To unsubscribe, go to: https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
mediawiki-l@lists.wikimedia.org