antitoxic
commented
13 years ago Is there a real use case where only a certain page from the project will be SSL secured ?
Can you give me one - I guess you made the fix because you needed it?
Closed shaula closed 13 years ago
antitoxic
commented
13 years ago Is there a real use case where only a certain page from the project will be SSL secured ?
Can you give me one - I guess you made the fix because you needed it?
shaula
commented
13 years ago Securing the complete website would result in more overhead for the webserver. Therefore only those pages are secured, that deal with sensitive data. Take for example a webshop. Everybody could view products (no SSL required), registered users can additionally manage their password, address, payment data, etc..(the my-account department so to say). Additionally the login & registration pages can be secured.
antitoxic
commented
13 years ago Now the wait for someone to commit it...
If you've build something like a web-shop do you mind sharing it? It would be fantastic to have such examples.
shaula
commented
13 years ago ok, I'm looking forward to his feature :-)
On the frontend where the admin wants to secure specific pages via HTTPS, one can now check "Use HTTPS" in "Edit Page" -> "Publication". Whenever a user visits this site, he will be redirected to the HTTPS version via HTTP status code 301. All other pages (use https not checked) will be redirected to HTTP if called via HTTPS.