[wp-trac] [WordPress Trac] #63490: Non secure sudomain site url in site activation email
WordPress Trac
noreply at wordpress.org
Tue May 27 14:26:51 UTC 2025
#63490: Non secure sudomain site url in site activation email
------------------------------------+------------------------------
Reporter: umesh.nevase | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Login and Registration | Version: 6.8
Severity: normal | Resolution:
Keywords: | Focuses:
------------------------------------+------------------------------
Comment (by rollybueno):
Looks like this depends on home settings value. e.g.
[[Image(https://i.imgur.com/IoiPE0t.png)]]
On the subdomain install, the URL is fetched by using
get_blogaddress_by_id():
https://core.trac.wordpress.org/browser/tags/6.8.1/src/wp-includes/ms-
blogs.php#L46. It will try to set the scheme by parsing the ''home''
value. If the scheme is empty, it will be using ''http'' although it will
esc_url() on the return value.
I could be wrong, but can you confirm on your settings?
--
Ticket URL: <https://core.trac.wordpress.org/ticket/63490#comment:1>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list